Описание
OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:openstack:ironic_inspector:*:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.0057
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-254
Связанные уязвимости
redhat
больше 10 лет назад
OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error.
debian
около 10 лет назад
OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), ...
CVSS3: 8.1
github
больше 6 лет назад
Injection vulnerability that affects ironic-discoverd
EPSS
Процентиль: 68%
0.0057
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-254