Launch Week Day 1: Announcing Security Design Review

OpenStack Ironic is Vulnerable to Inclusion of Functionality from Untrusted Control Sphere

GHSA-wqpv-c3pp-3m58 · CVE-2026-42510

Published Apr 28, 2026 · Modified Jun 8, 2026

Description

OpenStack Ironic through 25.0.0 allows ipmitool execution in a non-default configuration that has a console interface.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes