CVE-2026-46447

Published: Jun 3, 2026Modified: Jun 4, 2026

7.7

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Exploitability: 3.1 / Impact: 4.0

Source: NVD

Description

OpenStack Ironic before 35.0.2 allows Boot Script Injection of an iPXE script if the attacker can set node.driver_info or node.instance_info.

Affected (4)

Products: Openstack: Ironic

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Openstack Ironic	From 17.0.0 to 26.1.7
Openstack Ironic	From 27.0.0 to 29.0.6
Openstack Ironic	From 30.0.0 to 32.0.2
Openstack Ironic	From 33.0.0 to 35.0.2

Related CWEs

Incorrect Resource Transfer Between Spheres

The product does not properly transfer a resource/behavior to another sphere, or improperly imports a resource/behavior from another sphere, in a manner that provides unintended control over that resource.

References (3)

https://bugs.launchpad.net/ironic/+bug/2150624

Source: cve@mitre.org

Issue Tracking

https://security.openstack.org/ossa/OSSA-2026-017.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.openwall.com/lists/oss-security/2026/06/03/11

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

Timeline

No history available yet.