CVE-2026-44917EPSS p20.9%

CVE-2026-44917CVE-2026-44917

openstack / ironic

Description

OpenStack Ironic before 35.0.2 allows a malicious authenticated project admin or manager to read local files on the Ironic conductor via a pxe_template.

Scoring

CVSS 4.9 ()
VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
EPSS0.29% probability of exploitation · percentile 20.9% · 2026-06-19T12:03:05Z
Last modified2026-06-04

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-46447
CVE
CVE-2026-48681
CVE
CVE-2026-50589
CVE
CVE-2026-41283
CVE
CVE-2026-22907
CVE
CVE-2025-45472
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.