VDB
KO
HIGH 7.8

PYSEC-2026-1945

OpenStack Storlets arbitrary code execution vulnerability

Details

An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / storlets
Introduced in: 0 Fixed in: 13.0.0.0rc1
Fix pip install --upgrade 'storlets>=13.0.0.0rc1'

References