Vulnerabilities (CVE)

Filtered by vendor Canonical Subscribe
Filtered by product Maas
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-1058 1 Canonical 2 Maas, Ubuntu Linux 2024-11-21 5.8 MEDIUM N/A
maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these files via a man-in-the-middle (MITM) attack.
CVE-2013-1057 1 Canonical 2 Maas, Ubuntu Linux 2024-11-21 4.4 MEDIUM N/A
Untrusted search path vulnerability in maas-import-pxe-files in MAAS before 13.10 allows local users to execute arbitrary code via a Trojan horse import_pxe_files configuration file in the current working directory.