What the vulnerability does
Description
The mistral-dashboard plugin for openstack has a local file inclusion vulnerability through the 'Create Workbook' feature that may result in disclosure of arbitrary local files content.
CVE-2021-4472
MEDIUM
CVE-2021-4472: Python-mistralclient: mistral-dashboard: local file inclusion through the 'create workbook' feature
CVSS base score
6.5/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Key dates
Disclosure timeline
November 26, 2025
CVE published
December 1, 2025
Record updated
