6
CVE-2026-55748
- EPSS 0.19%
- Veröffentlicht 17.06.2026 14:12:20
- Zuletzt bearbeitet 17.06.2026 14:12:20
- Quelle 8254265b-2729-46b6-b9e3-3dfca2
- CVE-Watchlists
- Unerledigt
OpenStack Horizon before 25.7.4 produces scripts for OpenStack RC file downloading that may have a crafted project name with shell metacharacters. NOTE: some parties consider this a security hardening opportunity to address certain types of user error, not a vulnerability.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerOpenStack
≫
Produkt
Horizon
Default Statusunaffected
Version
8.0.0
Version <
25.3.3
Status
affected
Version
25.4.0
Version <
25.5.3
Status
affected
Version
25.6.0
Version <
25.7.4
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.087 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 8254265b-2729-46b6-b9e3-3dfca2d5bfca | 6 | 0 | 0 |
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:L
|
https://wiki.openstack.org/wiki/OSSN/OSSN-0097
https://launchpad.net/bugs/2152240