A vulnerability has been found in OpenStack Ironic up to 35.0.x and classified as critical . The affected element is an unknown function. The manipulation leads to injection. This vulnerability is documented as CVE-2026-46447 . The attack requires being on the local network. There is not any exploit available.