VYPR

PyPI package

ironic-inspector

pkg:pypi/ironic-inspector

Vulnerabilities (2)

  • CVE-2019-10141Jul 30, 2019
    affected < 5.0.2fixed 5.0.2

    A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a server

  • CVE-2015-5306Nov 25, 2015
    affected < 2.2.2fixed 2.2.2

    OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error.