CVE-2026-41283

CRITICAL NVD

CVSS Score 9.9

Severity CRITICAL

Published Jun 04, 2026

Vendor unknown

Description

OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.

References

https://github.com/openstack/mistral/tags
https://www.openwall.com/lists/oss-security/2026/06/03/14