{"dataType":"CVE_RECORD","cveMetadata":{"cveId":"CVE-2026-50589","assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","state":"PUBLISHED","assignerShortName":"mitre","dateReserved":"2026-06-04T23:59:19.739Z","datePublished":"2026-06-04T23:59:20.118Z","dateUpdated":"2026-07-08T12:06:03.502Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"Ironic","repo":"https://opendev.org/openstack/ironic","vendor":"OpenStack","versions":[{"lessThan":"37.0.0","status":"unknown","version":"32.0.0","versionType":"semver"}]}],"descriptions":[{"lang":"en","value":"In OpenStack Ironic 32 before 37.0.0, an unauthenticated malicious user could submit a crafted JSON string to some endpoints on the API or JSON-RPC service and effect a service crash."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"LOW","baseScore":5.3,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-770","description":"CWE-770 Allocation of Resources Without Limits or Throttling","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre","dateUpdated":"2026-06-06T03:22:23.959Z"},"references":[{"url":"https://bugs.launchpad.net/ironic/+bug/2154288"},{"url":"https://wiki.openstack.org/wiki/OSSN/OSSN-0099"}],"x_generator":{"engine":"CVE-Request-form 0.0.1"}},"adp":[{"references":[{"url":"https://bugs.launchpad.net/ironic/+bug/2154288","tags":["exploit"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-06-09T15:08:27.511506Z","id":"CVE-2026-50589","options":[{"Exploitation":"poc"},{"Automatable":"yes"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-06-09T15:08:42.615Z"}},{"title":"CVE Program Container","references":[{"url":"http://www.openwall.com/lists/oss-security/2026/06/06/2"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2026-06-06T05:18:06.298Z"}},{"affected":[{"cpes":["cpe:/a:redhat:openshift:4"],"defaultStatus":"affected","product":"Red Hat OpenShift Container Platform 4","vendor":"Red Hat"},{"cpes":["cpe:/a:redhat:openstack:16.2"],"defaultStatus":"unaffected","product":"Red Hat OpenStack Platform 16.2","vendor":"Red Hat"},{"cpes":["cpe:/a:redhat:openstack:17.1"],"defaultStatus":"unaffected","product":"Red Hat OpenStack Platform 17.1","vendor":"Red Hat"},{"cpes":["cpe:/a:redhat:openstack:18.0"],"defaultStatus":"unaffected","product":"Red Hat OpenStack Platform 18.0","vendor":"Red Hat"}],"datePublic":"2026-06-04T23:59:20.118Z","descriptions":[{"lang":"en","value":"A flaw was found in OpenStack Ironic. An unauthenticated malicious user could exploit this vulnerability by submitting a specially crafted JSON (JavaScript Object Notation) string to certain API (Application Programming Interface) or JSON-RPC (Remote Procedure Call) service endpoints. This could lead to a service crash, resulting in a Denial of Service (DoS) for affected systems."}],"metrics":[{"other":{"content":{"namespace":"https://access.redhat.com/security/updates/classification/","value":"Important"},"type":"Red Hat severity rating"}},{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS"}],"problemTypes":[{"descriptions":[{"cweId":"CWE-502","description":"Deserialization of Untrusted Data","lang":"en","type":"CWE"}]}],"references":[{"tags":["vdb-entry","x_refsource_REDHAT"],"url":"https://access.redhat.com/security/cve/CVE-2026-50589"},{"name":"RHBZ#2485353","tags":["issue-tracking","x_refsource_REDHAT"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485353"},{"tags":["x_sadp-csaf-vex"],"url":"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-50589.json"}],"timeline":[{"lang":"en","time":"2026-06-05T01:00:47.309Z","value":"Reported to Red Hat."},{"lang":"en","time":"2026-06-04T23:59:20.118Z","value":"Made public."}],"title":"openstack-ironic: OpenStack Ironic: Denial of Service via crafted JSON string","workarounds":[{"lang":"en","value":"To reduce the risk of exploitation, restrict network access to the OpenStack Ironic API and JSON-RPC service endpoints. Configure firewall rules to permit connections only from trusted hosts and networks that require access to Ironic services. This operational control limits the attack surface by preventing unauthenticated remote attackers from reaching the vulnerable endpoints. A restart of the Ironic services may be required for firewall changes to take full effect, which could temporarily impact bare metal provisioning operations."}],"x_adpType":"supplier","x_generator":{"engine":"sadp-cli 1.0.0"},"providerMetadata":{"orgId":"0b0ca135-0b70-47e7-9f44-1890c2a1c46c","shortName":"redhat-SADP","dateUpdated":"2026-07-08T12:06:03.502Z"}}]},"dataVersion":"5.2"}