Fluid Attacks Database

Description

OpenStack Ironic Python Agent Includes Functionality from Untrusted Control Sphere An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Ironic Python Agent (IPA) sometimes executes grub-install from within a chroot of the deployed partition image, leading to code execution in the case of a malicious image.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 14	ironic-python-agent	=10.2.0-3 \|\| =11.1.0-1 \|\| =11.2.0-1 \|\| =11.2.0-2 \|\| =11.4.0-1 \|\| =11.5.0-1 \|\| =11.5.0-2	-
debian 13	ironic-python-agent	=10.2.0-3 \|\| =11.1.0-1 \|\| =11.2.0-1 \|\| =11.2.0-2 \|\| =11.4.0-1 \|\| =11.5.0-1 \|\| =11.5.0-2	-
pypi	ironic-python-agent	>=1.0.0 <=11.5.0	2.0.0

Aliases

1. CVE-2026-430032. NVD-2026-430033. OSV-DEBIAN-2026-430034. OSV-2026-430035. GCVE-2026-430036. SECURITY-TRACKER-CVE-2026-43003

References

1. https://bugs.launchpad.net/ironic-python-agent/+bug/21483102. https://github.com/openstack/ironic-python-agent/blob/236b33abffe6688afc39c21e351cc3889b3db2dd/ironic_python_agent/efi_utils.py#L134-L139