[OSSA-2026-016] OpenStack Neutron: Tagging policy bypass allows project readers to mutate tags (CVE-2026-pending)
by Goutham Pacha Ravi 29 May '26
by Goutham Pacha Ravi 29 May '26
29 May '26
1
0
[OSSA-2026-015] OpenStack Keystone: Multiple credential delegation and authorization bypass vulnerabilities (CVE-2026-42998, CVE-2026-42999, CVE-2026-43000, CVE-2026-43001, CVE-2026-44394)
by Goutham Pacha Ravi 29 May '26
by Goutham Pacha Ravi 29 May '26
29 May '26
1
0
[OSSA-2026-014] OpenStack Swift: Swift proxy-server denial of service via truncated s3api chunked upload (CVE-2026-49017)
by Goutham Pacha Ravi 28 May '26
by Goutham Pacha Ravi 28 May '26
28 May '26
1
0
[OSSA-2026-013] Ironic: Denial of Service via specially crafted deployment requests (CVE-2026-44919)
by Jay Faulkner 20 May '26
by Jay Faulkner 20 May '26
20 May '26
1
0
[OSSA-2026-012] Ironic: Remote Code Execution when Anaconda driver enabled
by Jay Faulkner 12 May '26
by Jay Faulkner 12 May '26
12 May '26
1
0
[OSSA-2026-011] Cyborg: Multiple access control vulnerabilities in Cyborg accelerator management (CVE-2026-40213, CVE-2026-40214)
by Goutham Pacha Ravi 08 May '26
by Goutham Pacha Ravi 08 May '26
08 May '26
1
0
[OSSA-2026-010] Ironic: Credential Forwarding to Arbitrary Endpoints via iDrac Configuration Molds Feature (CVE-2026-42997)
by Jay Faulkner 06 May '26
by Jay Faulkner 06 May '26
06 May '26
1
0
[OSSA-2026-009] Horizon: Unauthenticated session flood via login redirect storage (CVE-2026-43002)
by Goutham Pacha Ravi 05 May '26
by Goutham Pacha Ravi 05 May '26
05 May '26
1
0