CVE-2024-47211

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Oct 4, 2024

Updated: Nov 21, 2024

Summary

CVE-2024-47211 is a vulnerability affecting OpenStack Ironic versions before 21.4.4, 22.x, 23.0.2, 23.x and 24.1.2, and 25.x and 26.x before 26.1.0. This issue arises due to a missing checksum validation for supplied image_source URLs during the process of converting images to a raw format for streaming. An attacker can exploit this vulnerability by supplying malicious image files with incorrect checksums, which could lead to the execution of unauthorized code or data corruption. Consequently, it's crucial for OpenStack Ironic users to update their systems to the latest patched versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

OpenStack Ironic

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners