Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

OpenStack — Vulnerabilities & Security Advisories 37

Browse all 37 CVE security advisories affecting OpenStack. AI-powered Chinese analysis, POCs, and references for each vulnerability.

OpenStack is an open-source cloud computing platform primarily used for building and managing private and public clouds. Historically, it has been susceptible to various vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with 20 CVEs currently documented. The platform's complex, modular architecture introduces multiple attack surfaces. Notable security characteristics include its extensive permission model and isolation mechanisms, though misconfigurations remain a common risk. While no major public security incidents have been widely reported, the platform's widespread adoption in enterprise environments makes it a persistent target for attackers seeking to exploit vulnerabilities in its core services and APIs.

Top products by OpenStack: Ironic Keystone OpenStack Nova Horizon Cyborg Neutron openstack-tripleo-heat-templates keystonemiddleware Vitrage Glance Skyline ironic-python-agent Swift Mistral
CVE IDTitleCVSSSeverityPublished
CVE-2026-55748 OpenStack horizon 命令注入漏洞 — HorizonCWE-78 6.0 Medium2026-06-17
CVE-2026-46448 OpenStack Nova 权限许可和访问控制问题漏洞 — NovaCWE-669 5.4 Medium2026-06-16
CVE-2026-54421 OpenStack Ironic 信息泄露漏洞 — IronicCWE-212 6.8 Medium2026-06-14
CVE-2026-50589 OpenStack Ironic 安全漏洞 — IronicCWE-770 5.3 Medium2026-06-04
CVE-2026-50266 OpenStack Neutron 安全漏洞 — NeutronCWE-863 2.2 Low2026-06-04
CVE-2026-41283 OpenStack Mistral-Dashboard 安全漏洞 — MistralCWE-863 9.9 Critical2026-06-04
CVE-2026-48681 OpenStack Ironic 安全漏洞 — IronicCWE-23 5.9 Medium2026-06-04
CVE-2026-44917 OpenStack Ironic 安全漏洞 — IronicCWE-669 4.9 Medium2026-06-04
CVE-2026-46447 OpenStack Ironic 安全漏洞 — IronicCWE-669 5.8 Medium2026-06-03
CVE-2026-49299 OpenStack Neutron 安全漏洞 — NeutronCWE-863--2026-05-28
CVE-2026-44394 OpenStack Keystone 安全漏洞 — KeystoneCWE-863 6.0 Medium2026-05-28
CVE-2026-43000 OpenStack Keystone 安全漏洞 — KeystoneCWE-863 6.0 Medium2026-05-28
CVE-2026-42999 OpenStack Keystone 安全漏洞 — KeystoneCWE-863 6.0 Medium2026-05-28
CVE-2026-42998 OpenStack Keystone 安全漏洞 — KeystoneCWE-863 6.0 Medium2026-05-28
CVE-2026-49017 OpenStack Swift 安全漏洞 — SwiftCWE-835--2026-05-27
CVE-2026-44919 OpenStack Ironic 安全漏洞 — IronicCWE-696 4.3 Medium2026-05-14
CVE-2026-44916 OpenStack Ironic 安全漏洞 — IronicCWE-1336 3.0 Low2026-05-08
CVE-2026-40214 OpenStack Cyborg 安全漏洞 — CyborgCWE-282 6.3 Medium2026-05-07
CVE-2026-40213 OpenStack Cyborg 安全漏洞 — CyborgCWE-863 7.4 High2026-05-07
CVE-2026-42997 OpenStack Ironic 安全漏洞 — IronicCWE-669 7.7 High2026-05-05
CVE-2026-43002 OpenStack Horizon 安全漏洞 — HorizonCWE-696 5.3 Medium2026-05-05
CVE-2026-43001 OpenStack Keystone 安全漏洞 — KeystoneCWE-863 7.9 High2026-05-01
CVE-2026-43003 OpenStack ironic-python-agent 安全漏洞 — ironic-python-agentCWE-829 8.0 High2026-05-01
CVE-2026-42510 OpenStack Ironic 安全漏洞 — IronicCWE-829 6.6 Medium2026-04-28
CVE-2026-40683 OpenStack Keystone 安全漏洞 — KeystoneCWE-843 7.7 High2026-04-14
CVE-2026-40212 OpenStack Skyline 安全漏洞 — SkylineCWE-79 5.4 Medium2026-04-10
CVE-2026-33551 OpenStack Keystone 安全漏洞 — KeystoneCWE-863 3.5 Low2026-04-10
CVE-2026-34881 OpenStack Glance 安全漏洞 — GlanceCWE-918 5.0 Medium2026-03-31
CVE-2026-28370 OpenStack Vitrage 安全漏洞 — VitrageCWE-95 9.1 Critical2026-02-27
CVE-2026-24708 OpenStack Nova 安全漏洞 — NovaCWE-669 8.2 High2026-02-18

This page lists every published CVE security advisory associated with OpenStack. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.