Every CVE whose affected-product data names Openstack Magnum, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-7404 — CVSS 9.8 (critical): OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for…
CVE-2024-28718 — CVSS 9.8 (critical): An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the cert_manager.py. component.