๐Ÿ” CVE Alert

CVE-2026-54423

HIGH 8.2
CVSS Score
8.2
EPSS Score
0.5%
EPSS Percentile
40th

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control.

CWE CWE-424
Vendor openstack
Product ironic
Published Jul 10, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for openstack ironic

Be the first to know when new high vulnerabilities affecting openstack ironic are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
High

Affected Versions

OpenStack / Ironic
22.1.0 < 29.0.6 30.0.0 < 32.0.2 32.0.0 < 35.0.2 36.0.0 < 37.0.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
bugs.launchpad.net: https://bugs.launchpad.net/ironic/+bug/2150458 security.openstack.org: https://security.openstack.org/ossa/OSSA-2026-025.html openwall.com: http://www.openwall.com/lists/oss-security/2026/07/08/3