Vulnerability Details CVE-2026-42510
OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 42.7%
CVSS Severity
CVSS v3 Score 6.6
References
Products affected by CVE-2026-42510
-
cpe:2.3:a:openstack:ironic:10.0.0
-
cpe:2.3:a:openstack:ironic:10.1.0
-
cpe:2.3:a:openstack:ironic:10.1.1
-
cpe:2.3:a:openstack:ironic:10.1.10
-
cpe:2.3:a:openstack:ironic:10.1.2
-
cpe:2.3:a:openstack:ironic:10.1.3
-
cpe:2.3:a:openstack:ironic:10.1.4
-
cpe:2.3:a:openstack:ironic:10.1.5
-
cpe:2.3:a:openstack:ironic:10.1.6
-
cpe:2.3:a:openstack:ironic:10.1.7
-
cpe:2.3:a:openstack:ironic:10.1.8
-
cpe:2.3:a:openstack:ironic:10.1.9
-
cpe:2.3:a:openstack:ironic:11.0.0
-
cpe:2.3:a:openstack:ironic:11.1.0
-
cpe:2.3:a:openstack:ironic:11.1.1
-
cpe:2.3:a:openstack:ironic:11.1.2
-
cpe:2.3:a:openstack:ironic:11.1.3
-
cpe:2.3:a:openstack:ironic:11.1.4
-
cpe:2.3:a:openstack:ironic:12.0.0
-
cpe:2.3:a:openstack:ironic:12.1.0
-
cpe:2.3:a:openstack:ironic:12.1.1
-
cpe:2.3:a:openstack:ironic:12.1.2
-
cpe:2.3:a:openstack:ironic:12.1.3
-
cpe:2.3:a:openstack:ironic:12.1.4
-
cpe:2.3:a:openstack:ironic:12.1.5
-
cpe:2.3:a:openstack:ironic:12.1.6
-
cpe:2.3:a:openstack:ironic:12.2.0
-
cpe:2.3:a:openstack:ironic:13.0.0
-
cpe:2.3:a:openstack:ironic:13.0.1
-
cpe:2.3:a:openstack:ironic:13.0.2
-
cpe:2.3:a:openstack:ironic:13.0.3
-
cpe:2.3:a:openstack:ironic:13.0.4
-
cpe:2.3:a:openstack:ironic:13.0.5
-
cpe:2.3:a:openstack:ironic:13.0.6
-
cpe:2.3:a:openstack:ironic:13.0.7
-
cpe:2.3:a:openstack:ironic:14.0.0
-
cpe:2.3:a:openstack:ironic:15.0.0
-
cpe:2.3:a:openstack:ironic:15.0.1
-
cpe:2.3:a:openstack:ironic:15.0.2
-
cpe:2.3:a:openstack:ironic:15.1.0
-
cpe:2.3:a:openstack:ironic:15.2.0
-
cpe:2.3:a:openstack:ironic:16.0.0
-
cpe:2.3:a:openstack:ironic:16.0.1
-
cpe:2.3:a:openstack:ironic:16.0.2
-
cpe:2.3:a:openstack:ironic:16.0.3
-
cpe:2.3:a:openstack:ironic:16.0.4
-
cpe:2.3:a:openstack:ironic:16.0.5
-
cpe:2.3:a:openstack:ironic:16.1.0
-
cpe:2.3:a:openstack:ironic:16.2.0
-
cpe:2.3:a:openstack:ironic:17.0.0
-
cpe:2.3:a:openstack:ironic:17.0.1
-
cpe:2.3:a:openstack:ironic:17.0.2
-
cpe:2.3:a:openstack:ironic:17.0.3
-
cpe:2.3:a:openstack:ironic:17.0.4
-
cpe:2.3:a:openstack:ironic:17.1.0
-
cpe:2.3:a:openstack:ironic:18.0.0
-
cpe:2.3:a:openstack:ironic:18.1.0
-
cpe:2.3:a:openstack:ironic:18.2.0
-
cpe:2.3:a:openstack:ironic:18.2.1
-
cpe:2.3:a:openstack:ironic:18.2.2
-
cpe:2.3:a:openstack:ironic:18.3.0
-
cpe:2.3:a:openstack:ironic:19.0.0
-
cpe:2.3:a:openstack:ironic:20.0.0
-
cpe:2.3:a:openstack:ironic:20.1.0
-
cpe:2.3:a:openstack:ironic:20.1.1
-
cpe:2.3:a:openstack:ironic:20.1.2
-
cpe:2.3:a:openstack:ironic:20.1.3
-
cpe:2.3:a:openstack:ironic:20.2.0
-
cpe:2.3:a:openstack:ironic:21.0.0
-
cpe:2.3:a:openstack:ironic:21.1.0
-
cpe:2.3:a:openstack:ironic:21.1.1
-
cpe:2.3:a:openstack:ironic:21.1.2
-
cpe:2.3:a:openstack:ironic:21.2.0
-
cpe:2.3:a:openstack:ironic:21.3.0
-
cpe:2.3:a:openstack:ironic:21.4.0
-
cpe:2.3:a:openstack:ironic:21.4.1
-
cpe:2.3:a:openstack:ironic:21.4.2
-
cpe:2.3:a:openstack:ironic:21.4.3
-
cpe:2.3:a:openstack:ironic:21.4.4
-
cpe:2.3:a:openstack:ironic:22.0.0
-
cpe:2.3:a:openstack:ironic:22.1.0
-
cpe:2.3:a:openstack:ironic:23.0.0
-
cpe:2.3:a:openstack:ironic:23.0.1
-
cpe:2.3:a:openstack:ironic:23.0.2
-
cpe:2.3:a:openstack:ironic:23.0.3
-
cpe:2.3:a:openstack:ironic:23.0.4
-
cpe:2.3:a:openstack:ironic:23.0.5
-
cpe:2.3:a:openstack:ironic:23.1.0
-
cpe:2.3:a:openstack:ironic:24.0.0
-
cpe:2.3:a:openstack:ironic:24.1.0
-
cpe:2.3:a:openstack:ironic:24.1.1
-
cpe:2.3:a:openstack:ironic:24.1.2
-
cpe:2.3:a:openstack:ironic:24.1.3
-
cpe:2.3:a:openstack:ironic:24.1.4
-
cpe:2.3:a:openstack:ironic:24.1.5
-
cpe:2.3:a:openstack:ironic:25.0.0
-
cpe:2.3:a:openstack:ironic:26.0.0
-
cpe:2.3:a:openstack:ironic:26.1.0
-
cpe:2.3:a:openstack:ironic:26.1.1
-
cpe:2.3:a:openstack:ironic:26.1.2
-
cpe:2.3:a:openstack:ironic:26.1.3
-
cpe:2.3:a:openstack:ironic:26.1.4
-
cpe:2.3:a:openstack:ironic:26.1.5
-
cpe:2.3:a:openstack:ironic:27.0.0
-
cpe:2.3:a:openstack:ironic:28.0.0
-
cpe:2.3:a:openstack:ironic:29.0.0
-
cpe:2.3:a:openstack:ironic:29.0.1
-
cpe:2.3:a:openstack:ironic:29.0.2
-
cpe:2.3:a:openstack:ironic:29.0.3
-
cpe:2.3:a:openstack:ironic:29.0.4
-
cpe:2.3:a:openstack:ironic:30.0.0
-
cpe:2.3:a:openstack:ironic:31.0.0
-
cpe:2.3:a:openstack:ironic:32.0.0
-
cpe:2.3:a:openstack:ironic:33.0.0
-
cpe:2.3:a:openstack:ironic:34.0.0
-
cpe:2.3:a:openstack:ironic:35.0.0
-
cpe:2.3:a:openstack:ironic:4.3.0
-
cpe:2.3:a:openstack:ironic:5.0.0
-
cpe:2.3:a:openstack:ironic:5.1.0
-
cpe:2.3:a:openstack:ironic:5.1.1
-
cpe:2.3:a:openstack:ironic:5.1.2
-
cpe:2.3:a:openstack:ironic:5.1.3
-
cpe:2.3:a:openstack:ironic:6.0.0
-
cpe:2.3:a:openstack:ironic:6.1.0
-
cpe:2.3:a:openstack:ironic:6.2.0
-
cpe:2.3:a:openstack:ironic:6.2.1
-
cpe:2.3:a:openstack:ironic:6.2.2
-
cpe:2.3:a:openstack:ironic:6.2.3
-
cpe:2.3:a:openstack:ironic:6.2.4
-
cpe:2.3:a:openstack:ironic:6.3.0
-
cpe:2.3:a:openstack:ironic:7.0.0
-
cpe:2.3:a:openstack:ironic:7.0.1
-
cpe:2.3:a:openstack:ironic:7.0.2
-
cpe:2.3:a:openstack:ironic:7.0.3
-
cpe:2.3:a:openstack:ironic:7.0.4
-
cpe:2.3:a:openstack:ironic:7.0.5
-
cpe:2.3:a:openstack:ironic:7.0.6
-
cpe:2.3:a:openstack:ironic:7.0.7
-
cpe:2.3:a:openstack:ironic:8.0.0
-
cpe:2.3:a:openstack:ironic:9.0.0
-
cpe:2.3:a:openstack:ironic:9.0.1
-
cpe:2.3:a:openstack:ironic:9.1.0
-
cpe:2.3:a:openstack:ironic:9.1.1
-
cpe:2.3:a:openstack:ironic:9.1.2
-
cpe:2.3:a:openstack:ironic:9.1.3
-
cpe:2.3:a:openstack:ironic:9.1.4
-
cpe:2.3:a:openstack:ironic:9.1.5
-
cpe:2.3:a:openstack:ironic:9.1.6
-
cpe:2.3:a:openstack:ironic:9.1.7
-
cpe:2.3:a:openstack:ironic:9.2.0