Medium CVE-2026-50589 In OpenStack Ironic 32 through 35.0.1, an unauthenticated malicious user could submit a crafted JSON string to some endpoints on the API or JSON-RPC service and effect a service crash. CVSS: 5.3 · CWE: CWE-770 View on NVD