Lucene search
PRIOn knowledge basePRION:CVE-2013-1070HistoryFeb 17, 2014 - 4:55 p.m.
Cross site scripting
2014-02-1716:55:00
PRIOn knowledge base
www.prio-n.com
2
6.1 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.0%
Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/.
| CPE | Name | Operator | Version |
|---|---|---|---|
| metal_as_a_service | eq | 1.4 | |
| metal_as_a_service | eq | 1.2 |
Related
ubuntucve
ubuntucve
CVE-2013-1070
2014-02-13 00:00:00
cve
cve
CVE-2013-1070
2014-02-17 16:55:00
openvas
openvas
Ubuntu Update for maas USN-2105-1
2014-02-17 00:00:00
Ubuntu: Security Advisory (USN-2105-1)
2014-02-17 00:00:00
securityvulns
securityvulns
[USN-2105-1] MAAS vulnerabilities
2014-05-05 00:00:00
MAAS security vulnerabilities
2014-05-05 00:00:00
ubuntu
ubuntu
MAAS vulnerabilities
2014-02-13 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 / 13.10 : maas vulnerabilities (USN-2105-1)
2014-02-14 00:00:00
6.1 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.0%
Related for PRION:CVE-2013-1070