CVE-2025-44021 | OpenStack Ironic up to 24.1.2/26.1.0/29.0.0 Image path traversal

Inserito da Angelo Barbosa | Mag 8, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in OpenStack Ironic up to 24.1.2/26.1.0/29.0.0. Affected by this issue is some unknown functionality of the component Image Handler. The manipulation leads to path traversal.

This vulnerability is handled as CVE-2025-44021. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-44021 | OpenStack Ironic up to 24.1.2/26.1.0/29.0.0 Image path traversal

Post correlati

CVE-2025-23027 | haydenbleasel next-forge up to 3.0.10 apps/web/.env.example cleartext storage

CVE-2024-9596 | GitLab Enterprise Edition up to 17.2.8/17.3.4/17.4.1 sensitive information in source (Issue 493355)

CVE-2023-46426 | GPAC 2.3-DEV-rev588-g7edc40fee-master utils/os_file.c gf_fwrite heap-based overflow (Issue 2642)

CVE-2025-25221 | LuxSoft LuxCal Web Calendar pdf.php sql injection