CVE-2026-42997: CWE-669 Incorrect Resource Transfer Between Spheres in OpenStack Ironic
CVE-2026-42997 is a high-severity vulnerability in OpenStack Ironic prior to version 35.0.1. It involves incorrect resource transfer between security domains (CWE-669) during the import process in the idrac component. A user invoking molds can cause authorization credentials—specifically time-limited Keystone tokens or basic credentials configured for molds storage—to be forwarded to a remote endpoint. This token grants access to all OpenStack services authorized for Ironic, potentially exposing sensitive credentials. Fixed versions include 26.1.6, 29.0.
AI Analysis
Technical Summary
This vulnerability in OpenStack Ironic (CVE-2026-42997) arises from improper handling of credential forwarding during the import process in the idrac component. When a user invokes molds, the system may send a time-limited Keystone token or basic credentials to a remote endpoint. The Keystone token provides broad access to OpenStack services authorized for Ironic, representing a significant risk if intercepted or misused. The issue is classified under CWE-669, indicating incorrect resource transfer between security spheres. Multiple fixed versions have been released, but the exact remediation status for all affected versions is not detailed in the input.
Potential Impact
An attacker with the ability to invoke molds during the import process could cause sensitive authorization credentials to be sent to a remote endpoint. The credentials include Keystone tokens with access to all OpenStack services authorized for Ironic, potentially allowing unauthorized access to these services. The vulnerability does not impact integrity or availability directly but poses a high confidentiality risk. No known active exploits have been reported.
Mitigation Recommendations
Fixed versions are available: 26.1.6, 29.0.5, 32.0.1, and 35.0.1. Users should upgrade to one of these versions to remediate the vulnerability. Patch status is not explicitly confirmed in the provided data; therefore, verify with the official OpenStack advisory for the latest remediation guidance. No vendor advisory content was provided indicating no action is required or that the issue is already mitigated.
CVE-2026-42997: CWE-669 Incorrect Resource Transfer Between Spheres in OpenStack Ironic
Description
CVE-2026-42997 is a high-severity vulnerability in OpenStack Ironic prior to version 35.0.1. It involves incorrect resource transfer between security domains (CWE-669) during the import process in the idrac component. A user invoking molds can cause authorization credentials—specifically time-limited Keystone tokens or basic credentials configured for molds storage—to be forwarded to a remote endpoint. This token grants access to all OpenStack services authorized for Ironic, potentially exposing sensitive credentials. Fixed versions include 26.1.6, 29.0.
CVSS v3.1
Score 7.7high
Affected software
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability in OpenStack Ironic (CVE-2026-42997) arises from improper handling of credential forwarding during the import process in the idrac component. When a user invokes molds, the system may send a time-limited Keystone token or basic credentials to a remote endpoint. The Keystone token provides broad access to OpenStack services authorized for Ironic, representing a significant risk if intercepted or misused. The issue is classified under CWE-669, indicating incorrect resource transfer between security spheres. Multiple fixed versions have been released, but the exact remediation status for all affected versions is not detailed in the input.
Potential Impact
An attacker with the ability to invoke molds during the import process could cause sensitive authorization credentials to be sent to a remote endpoint. The credentials include Keystone tokens with access to all OpenStack services authorized for Ironic, potentially allowing unauthorized access to these services. The vulnerability does not impact integrity or availability directly but poses a high confidentiality risk. No known active exploits have been reported.
Mitigation Recommendations
Fixed versions are available: 26.1.6, 29.0.5, 32.0.1, and 35.0.1. Users should upgrade to one of these versions to remediate the vulnerability. Patch status is not explicitly confirmed in the provided data; therefore, verify with the official OpenStack advisory for the latest remediation guidance. No vendor advisory content was provided indicating no action is required or that the issue is already mitigated.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2026-05-01T00:00:00.000Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69fa3543cbff5d861019120d
Added to database: 5/5/2026, 6:21:55 PM
Last enriched: 5/13/2026, 3:53:35 AM
Last updated: 6/19/2026, 9:21:33 PM
Views: 87
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.