Remote Code Execution Vulnerability in OpenStack Magnum by OpenStack
CVE-2024-28718

Currently unrated

Key Information:

Vendor: OpenStack
Status: Magnum
Vendor: CVE Published:; 12 April 2024

Summary

A vulnerability in OpenStack Magnum's cert_manager.py file allows a remote attacker to execute arbitrary code. This compromise may lead to unauthorized system access and manipulation, highlighting the need for immediate action to patch affected versions.

References

https://bugs.launchpad.net/magnum/+bug/2047690

https://review.opendev.org/c/openstack/magnum/+/907305

https://gist.github.com/Fewword/f098d8d6375ac25e27b18c0e5...

Timeline

Vulnerability published
Apr 12, 2024
Vulnerability Reserved
Mar 8, 2024