Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-1504

Malware in sbrugna...

5.3CVSS5AI score0.00948EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-1502

Malware in sbrugna...

8.6CVSS8.3AI score0.01408EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-1503

Malware in sbrugna...

9.6CVSS8AI score0.01088EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-1461

Malware in sbrugna...

9.8CVSS7.6AI score0.0087EPSS
Exploits0References2
NVD
NVD
added 2019/04/22 4:29 p.m.19 views

CVE-2015-1320

The SeaMicro provisioning of Ubuntu MAAS logs credentials, including username and password, for the management interface. This issue affects Ubuntu MAAS versions prior to 1.9.2...

9.8CVSS7.5AI score0.0087EPSS
Exploits0References1
Prion
Prion
added 2019/04/22 4:29 p.m.19 views

Design/Logic Flaw

The SeaMicro provisioning of Ubuntu MAAS logs credentials, including username and password, for the management interface. This issue affects Ubuntu MAAS versions prior to 1.9.2...

5CVSS7.1AI score0.0087EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/04/22 4:29 p.m.1 views

UBUNTU-CVE-2014-1428

A vulnerability in generatefilestoragekey of Ubuntu MAAS allows an attacker to brute-force filenames. This issue affects Ubuntu MAAS versions prior to 1.9.2...

5.3CVSS5.9AI score0.00948EPSS
Exploits0References2
Prion
Prion
added 2019/04/22 4:29 p.m.24 views

Cross site scripting

A vulnerability in the REST API of Ubuntu MAAS allows an attacker to cause a logged-in user to execute commands via cross-site scripting. This issue affects MAAS versions prior to 1.9.2...

4.3CVSS7.1AI score0.01088EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/04/22 4:29 p.m.21 views

Design/Logic Flaw

A vulnerability in maasserver.api.getfilebyname of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2...

5CVSS7AI score0.01408EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/04/22 4:29 p.m.38 views

CVE-2015-1320

The SeaMicro provisioning of Ubuntu MAAS logs credentials, including username and password, for the management interface. This issue affects Ubuntu MAAS versions prior to 1.9.2...

9.8CVSS6.8AI score0.0087EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/22 3:35 p.m.19 views

CVE-2014-1427 MAAS API vulnerable to CSRF attack

A vulnerability in the REST API of Ubuntu MAAS allows an attacker to cause a logged-in user to execute commands via cross-site scripting. This issue affects MAAS versions prior to 1.9.2...

9.6CVSS6.8AI score0.01088EPSS
Exploits0References1
CVE
CVE
added 2019/04/22 3:35 p.m.64 views

CVE-2014-1428

The CVE-2014-1428 entry concerns Ubuntu MAAS and the generate_filestorage_key function. Affected: MAAS versions prior to 1.9.2. Issue: vulnerability that allows an attacker to brute-force filenames due to flaws in key/identifier generation. Impact details are limited to the described statment; ex...

5.3CVSS4.5AI score0.00948EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/22 3:35 p.m.19 views

CVE-2015-1320 Probe-and-enlist for SeaMicro chassis writes password to the log

The SeaMicro provisioning of Ubuntu MAAS logs credentials, including username and password, for the management interface. This issue affects Ubuntu MAAS versions prior to 1.9.2...

5.5CVSS9.6AI score0.0087EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/22 3:35 p.m.25 views

CVE-2014-1428 uuid.uuid1() is not suitable as an unguessable identifier/token

A vulnerability in generatefilestoragekey of Ubuntu MAAS allows an attacker to brute-force filenames. This issue affects Ubuntu MAAS versions prior to 1.9.2...

2CVSS5.2AI score0.00948EPSS
Exploits0References1
CVE
CVE
added 2019/04/22 3:35 p.m.65 views

CVE-2015-1320

The CVE describes a credential disclosure issue in the SeaMicro provisioning used by Ubuntu MAAS: credentials (username and password) are logged by the management interface. Affected are MAAS versions before 1.9.2. This is tied to the SeaMicro provisioning flow and exposes sensitive data via logs...

9.8CVSS7.5AI score0.0087EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/04/22 3:35 p.m.55 views

CVE-2014-1426

CVE-2014-1426 concerns a vulnerability in MAAS (Ubuntu MAAS) where maasserver.api.get_file_by_name can be abused by unauthenticated network clients to download arbitrary files. Affected: MAAS versions prior to 1.9.2. The underlying issue is not fully detailed in the provided documents, but the im...

8.6CVSS7.7AI score0.01408EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2014/02/17 4:55 p.m.20 views

CVE-2013-1070

Cross-site scripting XSS vulnerability in the API in Ubuntu Metal as a Service MaaS 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/...

4.3CVSS5.6AI score0.02379EPSS
Exploits1References3
Prion
Prion
added 2014/02/17 4:55 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in the API in Ubuntu Metal as a Service MaaS 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/...

4.3CVSS6.1AI score0.02379EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2014/02/13 9:0 p.m.23 views

CVE-2013-1069

Ubuntu Metal as a Service MaaS 1.2 and 1.4 uses world-readable permissions for txlongpoll.yaml, which allows local users to obtain RabbitMQ authentication credentials by reading the file...

2.1CVSS5.9AI score0.00379EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/02/13 12:0 a.m.33 views

CVE-2013-1070

Cross-site scripting XSS vulnerability in the API in Ubuntu Metal as a Service MaaS 1.2 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the op parameter to nodes/...

4.3CVSS6AI score0.02379EPSS
Exploits1References2
Rows per page
Query Builder