35 matches found
PT-2024-38979 · Ultimaker · Ultimaker Cura
Name of the Vulnerable Software and Affected Versions: UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 Description: The issue arises from improper handling of the drop to buildplate property within 3MF files, which are ZIP archives containing the model data. When a 3MF file is loaded in...
CVE-2021-34087
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...
CVE-2021-34086
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...
CVE-2021-34087
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...
CVE-2021-34086
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...
Cross site request forgery (csrf)
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...
Code injection
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...
CVE-2021-34086
CVE-2021-34086 affects Ultimaker S3/S5 and Ultimaker 3 (S-line up to 6.3; 3 through 5.2.16) where the local webserver exposes APIs that are vulnerable to CSRF due to lack of request verification. Root cause: insufficient CSRF protection on the local webserver APIs. Impact: CVSS3.1/AV:N/AC:L/PR:N/...
CVE-2021-34086
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...
CVE-2021-34087
The CVE-2021-34087 entry describes a clickjacking vulnerability in the local webserver of Ultimaker printers. Affected products: Ultimaker S3, Ultimaker S5, and Ultimaker 3 family (S-line through firmware 6.3; Ultimaker 3 through 5.2.16). The issue is specifically on the settings page of the loca...
CVE-2021-34087
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...
Ultimaker 3D printer 跨站请求伪造漏洞
The Ultimaker 3D printer is a series of powerful, professional 3D printers from the Dutch company Ultimaker. A security vulnerability exists in the Ultimaker 3D printer that originates from local web servers hosting APIs that are vulnerable to CSRF attacks. They do not validate incoming requests...
Ultimaker 3D printer 安全漏洞
The Ultimaker 3D printer is a range of powerful, professional 3D printers from Dutch company Ultimaker. A security vulnerability exists in several Ultimaker products that originates from a local web server that can be used for clickjacking...
[SECURITY] Fedora 28 Update: cura-lulzbot-3.2.23-1.fc28
Cura is a project which aims to be an single software solution for 3D print ing. While it is developed to be used with the Ultimaker 3D printer, it can be u sed with other RepRap based designs. Cura prepares your model for 3D printing. For novices, it makes it easy to get great results. For...
[SECURITY] Fedora 27 Update: cura-lulzbot-3.2.23-1.fc27
Cura is a project which aims to be an single software solution for 3D print ing. While it is developed to be used with the Ultimaker 3D printer, it can be u sed with other RepRap based designs. Cura prepares your model for 3D printing. For novices, it makes it easy to get great results. For...