CVE-2026-40213: OpenStack Cyborg uses rule:allow (check_str='@') as the default policy for multiple API endpoints

May 8, 2026 (updated May 13, 2026)

OpenStack Cyborg before 16.0.1 uses rule:allow (check_str=’@’) as the default policy for multiple API endpoints. This unconditionally authorizes any request carrying a valid Keystone token regardless of roles, project membership, or scope. An authenticated user with zero role assignments can complete various actions such as reprogramming FPGA bitstreams on arbitrary compute nodes via agent RPC.

References

bugs.launchpad.net/openstack-cyborg/+bug/2143263
github.com/advisories/GHSA-mm7j-mhhj-hj36
nvd.nist.gov/vuln/detail/CVE-2026-40213
security.openstack.org/ossa/OSSA-2026-011.html
www.openwall.com/lists/oss-security/2026/05/07/6

Code Behaviors & Features

Detect and mitigate CVE-2026-40213 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →