CVE-2026-41283

Published June 4th, 2026

View on NVD ↗

CVSS v3

9.9

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.

openstack/mistral

Workflow Service for OpenStack. Mirror of code maintained at opendev.org.

GitHub

304