Vulnerabilities (CVE)

Filtered by vendor Simpestreams Project Subscribe
Filtered by product Simplestreams
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-1337 2 Canonical, Simpestreams Project 2 Ubuntu Linux, Simplestreams 2024-11-21 6.8 MEDIUM N/A
Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (aka Forbidden) response.