CVE-2024-31463 | metal3-io ironic-image up to 24.1.0 authentication bypass

Inserito da Angelo Barbosa | Apr 17, 2024 | CVE

A vulnerability was found in metal3-io ironic-image up to 24.1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to authentication bypass using alternate channel.

This vulnerability was named CVE-2024-31463. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31463 | metal3-io ironic-image up to 24.1.0 authentication bypass

Post correlati

CVE-2024-9466 | Palo Alto Expedition up to 1.2.95 log file

CVE-2024-27764 | Jeewms up to 3.7 AuthInterceptor Privilege Escalation

CVE-2024-4437 | Red Hat OpenStack Platform etcd Package resource consumption

CVE-2023-45592 | AiLux imx6 up to 1.0.7-1 unnecessary privileges