Lucene search
K

35 matches found

Positive Technologies
Positive Technologies
added 2024/09/03 12:0 a.m.7 views

PT-2024-38979 · Ultimaker · Ultimaker Cura

Name of the Vulnerable Software and Affected Versions: UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 Description: The issue arises from improper handling of the drop to buildplate property within 3MF files, which are ZIP archives containing the model data. When a 3MF file is loaded in...

7.8CVSS8.1AI score0.00433EPSS
Exploits0References21
OSV
OSV
added 2022/01/10 2:10 p.m.3 views

CVE-2021-34087

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...

7.1CVSS7.1AI score
Exploits0References3
NVD
NVD
added 2022/01/10 2:10 p.m.25 views

CVE-2021-34086

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...

8.8CVSS0.00529EPSS
Exploits0References4
NVD
NVD
added 2022/01/10 2:10 p.m.22 views

CVE-2021-34087

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...

7.1CVSS0.00814EPSS
Exploits0References3
OSV
OSV
added 2022/01/10 2:10 p.m.4 views

CVE-2021-34086

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...

8.8CVSS7.3AI score0.00529EPSS
Exploits0References4
Prion
Prion
added 2022/01/10 2:10 p.m.16 views

Cross site request forgery (csrf)

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...

6.8CVSS8.5AI score0.00529EPSS
Exploits0References4Affected Software3
Prion
Prion
added 2022/01/10 2:10 p.m.16 views

Code injection

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...

6.8CVSS6.9AI score0.00814EPSS
Exploits0References3Affected Software3
CVE
CVE
added 2022/01/10 1:12 a.m.63 views

CVE-2021-34086

CVE-2021-34086 affects Ultimaker S3/S5 and Ultimaker 3 (S-line up to 6.3; 3 through 5.2.16) where the local webserver exposes APIs that are vulnerable to CSRF due to lack of request verification. Root cause: insufficient CSRF protection on the local webserver APIs. Impact: CVSS3.1/AV:N/AC:L/PR:N/...

8.8CVSS8.4AI score0.00529EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/01/10 1:12 a.m.26 views

CVE-2021-34086

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests...

8.7AI score0.00529EPSS
Exploits0References4
CVE
CVE
added 2022/01/10 1:10 a.m.45 views

CVE-2021-34087

The CVE-2021-34087 entry describes a clickjacking vulnerability in the local webserver of Ultimaker printers. Affected products: Ultimaker S3, Ultimaker S5, and Ultimaker 3 family (S-line through firmware 6.3; Ultimaker 3 through 5.2.16). The issue is specifically on the settings page of the loca...

7.1CVSS6.8AI score0.00814EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/01/10 1:10 a.m.31 views

CVE-2021-34087

In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page...

7.1AI score0.00814EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/01/10 12:0 a.m.6 views

Ultimaker 3D printer 跨站请求伪造漏洞

The Ultimaker 3D printer is a series of powerful, professional 3D printers from the Dutch company Ultimaker. A security vulnerability exists in the Ultimaker 3D printer that originates from local web servers hosting APIs that are vulnerable to CSRF attacks. They do not validate incoming requests...

8.8CVSS7.9AI score0.00529EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/01/10 12:0 a.m.4 views

Ultimaker 3D printer 安全漏洞

The Ultimaker 3D printer is a range of powerful, professional 3D printers from Dutch company Ultimaker. A security vulnerability exists in several Ultimaker products that originates from a local web server that can be used for clickjacking...

7.1CVSS7.1AI score0.00814EPSS
Exploits0References4
Fedora
Fedora
added 2018/08/23 10:34 a.m.22 views

[SECURITY] Fedora 28 Update: cura-lulzbot-3.2.23-1.fc28

Cura is a project which aims to be an single software solution for 3D print ing. While it is developed to be used with the Ultimaker 3D printer, it can be u sed with other RepRap based designs. Cura prepares your model for 3D printing. For novices, it makes it easy to get great results. For...

9.8CVSS0.9AI score0.03429EPSS
Exploits0
Fedora
Fedora
added 2018/08/23 9:46 a.m.33 views

[SECURITY] Fedora 27 Update: cura-lulzbot-3.2.23-1.fc27

Cura is a project which aims to be an single software solution for 3D print ing. While it is developed to be used with the Ultimaker 3D printer, it can be u sed with other RepRap based designs. Cura prepares your model for 3D printing. For novices, it makes it easy to get great results. For...

9.8CVSS0.9AI score0.03429EPSS
Exploits0
Rows per page
Query Builder