CVE-2016-4985
Severity CVSS v4.0:
Pending analysis
Type:
CWE-200
Information Leak / Disclosure
Publication date:
12/07/2016
Last modified:
12/04/2025
Description
The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:* | ||
| cpe:2.3:a:canonical:openstack_ironic:*:*:*:*:*:*:*:* | 4.2.4 (including) | |
| cpe:2.3:a:canonical:openstack_ironic:5.1.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:canonical:openstack_ironic:5.1.1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.openwall.com/lists/oss-security/2016/06/21/6
- https://access.redhat.com/errata/RHSA-2016:1377
- https://access.redhat.com/errata/RHSA-2016:1378
- https://bugs.launchpad.net/ironic/+bug/1572796
- https://review.openstack.org/332195
- https://review.openstack.org/332196
- https://review.openstack.org/332197
- http://www.openwall.com/lists/oss-security/2016/06/21/6
- https://access.redhat.com/errata/RHSA-2016:1377
- https://access.redhat.com/errata/RHSA-2016:1378
- https://bugs.launchpad.net/ironic/+bug/1572796
- https://review.openstack.org/332195
- https://review.openstack.org/332196
- https://review.openstack.org/332197