Home

CVE-2015-5306

Description

OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error.

Risk Information

Base Score
8.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.57

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2015-5306 are fixed in Python-ironic-inspector 2.2.2Windows
Vulnerabilities CVE-2015-5306 are fixed in Python-ironic-inspector for linux 2.2.2Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234