{"vulnerability": "cve-2026-54421", "sightings": [{"uuid": "e581381f-972d-49bc-9080-03d3c9aab4fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54421", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moaauv2ng32f", "content": "CVE-2026-54421 - OpenStack Ironic Information Disclosure\nCVE ID : CVE-2026-54421\n \n Published : June 14, 2026, 4:16 a.m. | 1\u00a0hour, 25\u00a0minutes ago\n \n Description : In OpenStack Ironic through 35.0.1, when applying a PATCH to update fields in volume properties the user is author...", "creation_timestamp": "2026-06-14T07:32:19.423400Z"}, {"uuid": "6d568fb2-58b6-404d-a138-c2ab14877eef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-54421", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116747994648309538", "content": "\u26a0\ufe0f CVE-2026-54421 | Medium severity in OpenStack Ironic <=35.0.1: PATCH requests may leak iSCSI creds due to improper redaction. Restrict PATCH ops to trusted admins, monitor access, and follow vendor advisories. https://radar.offseq.com/threat/cve-2026-54421-cwe-212-improper-removal-of-sensiti-6e0b0746 #OffSeq #OpenStack #Infosec", "creation_timestamp": "2026-06-14T10:30:25.432114Z"}, {"uuid": "dbb5bfd9-7603-40d2-831e-882a87ef2131", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-54421", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3moaktehsog2a", "content": "OpenStack Ironic <=35.0.1 MEDIUM vuln: PATCH updates may leak sensitive info (iSCSI creds). Restrict PATCH ops, monitor usage, and check advisories for fixes. https://radar.offseq.com/threat/cve-2026-54421-cwe-212-improper-removal-of-sensiti-6e0b0746 #OffSeq #OpenStack #Vuln", "creation_timestamp": "2026-06-14T10:30:26.241099Z"}, {"uuid": "071eb57c-305b-4ed8-9033-c4f9ad67e6d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54421", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mognqwzqvm2f", "content": "[OSSA-2026-023] Ironic: Sensitive properties returned unredacted in POST and PATCH HTTP responses (CVE-2026-54421)", "creation_timestamp": "2026-06-16T20:38:44.332104Z"}]}