Launchpad CVE tracker

CVE 2016-4985

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.

Related bugs and status

CVE-2016-4985 (Candidate) is related to these bugs:

Bug #1572796: Node information including credentials exposed to unathenticated users (CVE-2016-4985)

Summary				In	Importance	Status
	1572796	Node information including credentials exposed to unathenticated users (CVE-2016-4985)		Ironic	High	Fix Released

Bug #1593209: Ironic Node information including credentials exposed to unauthenticated users

		In	Importance	Status
1593209	Ironic Node information including credentials exposed to unauthenticated users	Mirantis OpenStack	High	Invalid
1593209	Ironic Node information including credentials exposed to unauthenticated users	Mirantis OpenStack 8.0.x	High	Invalid
1593209	Ironic Node information including credentials exposed to unauthenticated users	Mirantis OpenStack 9.x	High	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-4985

References