OurCVEs
Register
Back to feed
High
DEBIAN-CVE-2026-54423

Published Jul 10, 2026

CVSS

8.2

HIGH

EPSS

Exploit Prediction Scoring System — the modeled probability of in-the-wild exploitation in the next 30 days.

Affected packages

0
Summary

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control.

Developer impact

Recommended action

Affected packages
Sources