Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Metal As A Service Security Vulnerabilities

cve
cve

CVE-2014-1426

A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.

8.6CVSS

7.4AI Score

0.002EPSS

2019-04-22 04:29 PM
29
cve
cve

CVE-2014-1427

A vulnerability in the REST API of Ubuntu MAAS allows an attacker to cause a logged-in user to execute commands via cross-site scripting. This issue affects MAAS versions prior to 1.9.2.

9.6CVSS

6.2AI Score

0.001EPSS

2019-04-22 04:29 PM
27
cve
cve

CVE-2014-1428

A vulnerability in generate_filestorage_key of Ubuntu MAAS allows an attacker to brute-force filenames. This issue affects Ubuntu MAAS versions prior to 1.9.2.

5.3CVSS

5.2AI Score

0.001EPSS

2019-04-22 04:29 PM
35
cve
cve

CVE-2015-1320

The SeaMicro provisioning of Ubuntu MAAS logs credentials, including username and password, for the management interface. This issue affects Ubuntu MAAS versions prior to 1.9.2.

9.8CVSS

9.3AI Score

0.002EPSS

2019-04-22 04:29 PM
42