Wiz
Vulnerability DatabaseCVE-2026-24708

CVE-2026-24708
OpenStack Nova vulnerability analysis and mitigation

An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1. By writing a malicious QCOW header to a root or ephemeral disk and then triggering a resize, a user may convince Nova's Flat image backend to call qemu-img without a format restriction, resulting in an unsafe image resize operation that could destroy data on the host system. Only compute nodes using the Flat image backend (usually configured with use_cow_images=False) are affected.

SourceNVD

Related OpenStack Nova vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2026-24708HIGH8.2
  • OpenStack NovaOpenStack Nova
  • nova
NoYesFeb 18, 2026
CVE-2024-40767MEDIUM6.5
  • PythonPython
  • nova
NoYesJul 24, 2024
CVE-2024-32498MEDIUM6.5
  • PythonPython
  • cinder
NoYesJul 05, 2024
CVE-2022-47951MEDIUM5.7
  • PythonPython
  • cinder
NoYesJan 26, 2023
CVE-2022-37394LOW3.3
  • PythonPython
  • nova
NoYesAug 03, 2022

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo