A vulnerability classified as problematic was found in OpenStack Ironic up to 35.0.1 . The affected element is an unknown function of the component API/JSON-RPC Service . Such manipulation leads to allocation of resources. This vulnerability is listed as CVE-2026-50589 . The attack may be performed from remote. There is no available exploit.