Lucene search
HistoryFeb 17, 2014 - 4:55 p.m.
CVE-2013-1070
cve-2013-1070
xss
vulnerability
ubuntu
metal as a service
maas
api
nvd
5.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.4%
Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/.
Related
ubuntucve
ubuntucve
CVE-2013-1070
2014-02-13 00:00:00
prion
prion
Cross site scripting
2014-02-17 16:55:00
securityvulns
securityvulns
MAAS security vulnerabilities
2014-05-05 00:00:00
[USN-2105-1] MAAS vulnerabilities
2014-05-05 00:00:00
ubuntu
ubuntu
MAAS vulnerabilities
2014-02-13 00:00:00
openvas
openvas
Ubuntu Update for maas USN-2105-1
2014-02-17 00:00:00
Ubuntu: Security Advisory (USN-2105-1)
2014-02-17 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 / 13.10 : maas vulnerabilities (USN-2105-1)
2014-02-14 00:00:00
5.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.4%
Related for CVE-2013-1070