CVE-2026-42510

Description

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface.

Affected packages (2)

• Debian/ironicfrom 0
• PyPI/ironicfrom 0, <= 25.0.0

CVSS scores

References (5)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-42510
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2026-42510
• PATCHhttps://github.com/openstack/ironic
• WEBhttps://bugs.launchpad.net/ironic/+bug/2148331
• WEBhttp://www.openwall.com/lists/oss-security/2026/04/30/1