CVE & CISA-KEV Catalog

CVE-2026-40214

MEDIUM
6.3
CVSS v3
NVD

Description

In OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project ownership at any layer. The project_id column in the database is never populated (NULL for every ARQ), database queries have no project filtering, and policy checks are self-referential (the authorize_wsgi decorator compares the caller's project_id with itself rather than the target resource). Any authenticated non-admin user can complete various actions such as deleting ARQs bound to other projects' instances, aka cross-tenant denial of service.

How to fix

Remediation Available
cyborgDebian
Fixed in:14.0.0-3+deb13u1CVE-2026-40214
Fixed in:16.0.0+git+2026.04.26.b8edfa06f1-1CVE-2026-40214
cyborgUbuntu
Fixed in:14.0.0-3+deb13u1build0.25.10.1USN-8413-1
cyborg-agentUbuntu
Fixed in:14.0.0-3+deb13u1build0.25.10.1USN-8413-1
cyborg-apiUbuntu
Fixed in:14.0.0-3+deb13u1build0.25.10.1USN-8413-1
cyborg-commonUbuntu
Fixed in:14.0.0-3+deb13u1build0.25.10.1USN-8413-1
cyborg-conductorUbuntu
Fixed in:14.0.0-3+deb13u1build0.25.10.1USN-8413-1
python3-cyborgUbuntu
Fixed in:14.0.0-3+deb13u1build0.25.10.1USN-8413-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityLow
IntegrityLow
AvailabilityLow

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Exploit Intelligence

0.21%probability of exploitation in 30 days
11thpercentile

Low risk: more likely to be exploited than 11% of all known CVEs.

References

Embed a live status badge for CVE-2026-40214
CVE-2026-40214 severity badge

Markdown

[![CVE-2026-40214](https://tridentstack.com/cve/badge/CVE-2026-40214.svg)](https://tridentstack.com/cve/CVE-2026-40214)

HTML

<a href="https://tridentstack.com/cve/CVE-2026-40214"><img src="https://tridentstack.com/cve/badge/CVE-2026-40214.svg" alt="CVE-2026-40214"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-05-08.