CVE-2026-43002 PUBLISHED

Assigner: mitre
Reserved: 01.05.2026 Published: 05.05.2026 Updated: 06.05.2026

An issue was discovered in OpenStack Horizon 25.6 and 25.7 before 25.7.3. There is a write operation to the session storage backend before authentication and thus storage can be exhausted by unauthenticated requests. This is a regression of the CVE-2014-8124 fix.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CVSS Score: 5.3

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	None
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	Low

CVSS 3.1

Product Status

Vendor	OpenStack
Product	Horizon
Versions	Default: unaffected affected from 25.6.0 to 25.7.3 (excl.)

References

https://bugs.launchpad.net/horizon/+bug/2150331
https://www.openwall.com/lists/oss-security/2026/05/05/7
https://security.openstack.org/ossa/OSSA-2026-009.html

Problem Types

CWE-696 Incorrect Behavior Order CWE