8.2

CVE-2026-24708

An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1. By writing a malicious QCOW header to a root or ephemeral disk and then triggering a resize, a user may convince Nova's Flat image backend to call qemu-img without a format restriction, resulting in an unsafe image resize operation that could destroy data on the host system. Only compute nodes using the Flat image backend (usually configured with use_cow_images=False) are affected.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
HerstellerRed Hat
Produkt Red Hat OpenStack Services on OpenShift 18.0
Default Statusaffected
HerstellerRed Hat
Produkt Red Hat OpenStack Platform 13 (Queens)
Default Statusaffected
HerstellerRed Hat
Produkt Red Hat OpenStack Platform 16.2
Default Statusaffected
HerstellerRed Hat
Produkt Red Hat OpenStack Platform 17.1
Default Statusaffected
HerstellerRed Hat
Produkt Red Hat OpenStack Platform 18.0
Default Statusaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.34% 0.26
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
cve@mitre.org 8.2 1.8 5.8
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H
0b0ca135-0b70-47e7-9f44-1890c2a1c46c 7.1 1.8 5.2
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
CWE-669 Incorrect Resource Transfer Between Spheres

The product does not properly transfer a resource/behavior to another sphere, or improperly imports a resource/behavior from another sphere, in a manner that provides unintended control over that resource.

CWE-73 External Control of File Name or Path

The product allows user input to control or influence paths or file names that are used in filesystem operations.

https://bugs.launchpad.net/nova/+bug/2137507
https://www.openwall.com/lists/oss-security/2026/02/17/7
https://lists.debian.org/debian-lts-announce/2026/02/msg00025.html
https://access.redhat.com/errata/RHSA-2026:7884
https://access.redhat.com/security/cve/CVE-2026-24708
https://bugzilla.redhat.com/show_bug.cgi?id=2430312
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-24708.json