logo

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

4

Debian, Go, Npm & more

Total vulnerabilities tracked

19

From global vulnerability databases

Exclude malware
Package ironic

FLAT-1GCAZ (CVE-2026-48681)

Lack of data validation - Path Traversal In ironic

7.6

High

Ecosystem: Debian

Package: ironic

FLAT-SW9RW (CVE-2026-44917)

Local file inclusion In ironic

3.6

Low

Ecosystem: Debian

Package: ironic

FLAT-HLV61 (CVE-2026-46447)

Server side template injection In ironic

4.2

Medium

Ecosystem: Debian

Package: ironic

FLAT-9MSQC (GHSA-hfc8-w5f4-3x6m)

Improper authorization control for web services In github.com/metal3-io/ironic-standalone-operator

0.6

Low

Ecosystem: Go

Package: github.com/metal3-io/ironic-standalone-operator

FLAT-ODVGS (GHSA-7cwm-fpfh-rrch)

Sensitive information sent insecurely In github.com/metal3-io/ironic-standalone-operator

0.6

Low

Ecosystem: Go

Package: github.com/metal3-io/ironic-standalone-operator

FLAT-283KR (CVE-2026-44919)

Improper resource allocation In ironic

2.3

Low

Ecosystem: PyPI

Package: ironic

FLAT-OE9D1 (CVE-2026-44916)

Server side template injection In ironic

5.8

Medium

Ecosystem: Debian

Package: ironic

FLAT-X1FG0 (CVE-2026-42997)

Weak credential policy In ironic-python-agent

5.6

Medium

Ecosystem: PyPI

Package: ironic-python-agent

FLAT-RDDOK (CVE-2026-43003)

Lack of data validation In ironic-python-agent

5.8

Medium

Ecosystem: PyPI

Package: ironic-python-agent

FLAT-Y7OHD (CVE-2026-42510)

Remote command execution In ironic

5.9

Medium

Ecosystem: PyPI

Package: ironic

FLAT-JI72R (MAL-2025-41692)

Use of software with malware In ironic-secureboot-driver

5.2

Medium

Ecosystem: PyPI

Package: ironic-secureboot-driver

FLAT-PZY1P (MAL-2025-23392)

Use of software with malware In ironic

5.2

Medium

Ecosystem: Npm

Package: ironic

FLAT-9Y72A (CVE-2025-44021)

Local file inclusion In ironic

0.4

Low

Ecosystem: PyPI

Package: ironic

FLAT-M6PXV (CVE-2024-47211)

Missing subresource integrity check In ironic

2.7

Low

Ecosystem: PyPI

Package: ironic

FLAT-3TQT5 (CVE-2024-44082)

Sensitive information sent insecurely In ironic-python-agent

1.3

Low

Ecosystem: Debian

Package: ironic-python-agent

FLAT-M52MK (CVE-2019-10141)

NoSQL injection In ironic-inspector

5.2

Medium

Ecosystem: PyPI

Package: ironic-inspector

FLAT-C0CNW (CVE-2016-4985)

Sensitive information sent insecurely In ironic

6.6

Medium

Ecosystem: PyPI

Package: ironic

FLAT-338FT (CVE-2015-5306)

Lack of data validation In ironic-inspector

7.2

High

Ecosystem: PyPI

Package: ironic-inspector

FLAT-9QDNM (CVE-2015-7514)

Business information leak In ironic

4.9

Medium

Ecosystem: Debian

Package: ironic