PYSEC-2015-28

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/ironic-inspector/PYSEC-2015-28.yaml

JSON Data

https://api.osv.dev/v1/vulns/PYSEC-2015-28

Aliases

Published

2015-11-25T20:59:00Z

Modified

2023-11-08T03:57:57.677895Z

Summary

[none]

Details

OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error.

References

Affected packages

PyPI / ironic-inspector

Package

Name: ironic-inspector; View open source insights on deps.dev
Purl: pkg:pypi/ironic-inspector

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.0

Affected versions

2.*

2.0.0

2.0.1

2.1.0

2.2.0

2.2.1

2.2.2

2.2.3

2.2.4

2.2.5

2.2.6

2.2.7

Database specific

source

"https://github.com/pypa/advisory-database/blob/main/vulns/ironic-inspector/PYSEC-2015-28.yaml"