VYPR

Ironic Image

by Metal3 Io

Source repositories

CVEs (2)

  • CVE-2024-31463MedApr 17, 2024
    risk 0.24cvss 4.7epss 0.00

    Ironic-image is an OpenStack Ironic deployment packaged and configured by Metal3. When the reverse proxy mode is enabled by the `IRONIC_REVERSE_PROXY_SETUP` variable set to `true`, 1) HTTP basic credentials are validated on the HTTPD side in a separate container, not in the…

  • CVE-2023-40585Aug 25, 2023
    risk 0.00cvss epss 0.00

    ironic-image is a container image to run OpenStack Ironic as part of Metal³. Prior to version capm3-v1.4.3, if Ironic is not deployed with TLS and it does not have API and Conductor split into separate services, access to the API is not protected by any authentication. Ironic…