CVE Catalog

CVE-2026-44919

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.41%

33th percentile - higher than 33% of all known CVEs

Summary

In OpenStack Ironic versions up to 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL.

Risk Assessment

This vulnerability may lead to resource exhaustion, potentially impacting service availability within the organization.

Recommendation

It is recommended to update OpenStack Ironic to a version that includes fixes after a3f6d73 to avoid issues with infinite loops.

Original NVD description (English source)

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS