VDB
KO
MEDIUM 5.5

PYSEC-2026-1853

OpenStack improperly deletes access rules

Details

A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / python-openstackclient
Introduced in: 0 Fixed in: 6.3.0
Fix pip install --upgrade 'python-openstackclient>=6.3.0'

References