CVE-2016-4985

EPSS 0.79% · P74 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-4985

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenStack 信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenStack是美国美国国家航空航天局（NASA）的一个云平台管理项目。 OpenStack存在信息泄露漏洞。远程攻击者可借助已知网卡的MAC地址，并向v1/drivers/$DRIVER_NAME/vendor_passthru资源发送POST请求利用该漏洞获取与注册节点相关的敏感信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2016-4985

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-4985

请登录查看更多情报信息。

https://review.openstack.org/332195x_refsource_CONFIRM
https://bugs.launchpad.net/ironic/+bug/1572796x_refsource_CONFIRM
https://review.openstack.org/332196x_refsource_CONFIRM
https://review.openstack.org/332197x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2016:1378vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2016:1377vendor-advisoryx_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2016/06/21/6mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2016-4985

Same Patch Batch · n/a · 2016-07-12 · 17 CVEs total

CVE-2015-3192		Pivotal Software Spring Framework 安全漏洞
CVE-2016-2219		Palo Alto Networks PAN-OS 跨站脚本漏洞
CVE-2016-4428		OpenStack Dashboard 跨站脚本漏洞
CVE-2016-4994		GIMP 资源管理错误漏洞
CVE-2016-5009		Red Hat Ceph 拒绝服务漏洞
CVE-2016-5774		Blue Coat PacketShaper S-Series 安全漏洞
CVE-2016-5850		Huawei Public Cloud Solution 跨站脚本漏洞
CVE-2016-6174		IPS Community Suite PHP代码注入漏洞
CVE-2016-1445		Cisco Adaptive Security Appliances Software 安全绕过漏洞
CVE-2016-2205		Symantec Workspace Streaming和Workspace Virtualization 目录遍历漏洞
CVE-2016-2206		Symantec Workspace Streaming和Workspace Virtualization 任意文件读取漏洞
CVE-2016-4503		Moxa Device Server Web Console 身份验证绕过漏洞
CVE-2016-4533		WECON LeviStudio 基于堆的缓冲区错误漏洞
CVE-2016-4831		NHN PlayArt LINE和LINE Installer 不可信搜索路径漏洞
CVE-2016-5308		Symantec Endpoint Protection和Norton Security 拒绝服务漏洞
CVE-2016-5781		WECON LeviStudio 基于栈的缓冲区溢出漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2016-4985

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-4985

I. Basic Information for CVE-2016-4985

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-4985

III. Intelligence Information for CVE-2016-4985

Same Patch Batch · n/a · 2016-07-12 · 17 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-4985

Leave a comment