CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-1057

Untrusted search path vulnerability in maas-import-pxe-files in MAAS before 13.10 allows local users to execute arbitrary code via a Trojan horse import_pxe_files configuration file in the current working directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.0%

CVSS Severity

CVSS v2 Score 4.4

References

http://secunia.com/advisories/55567
http://ubuntu.com/usn/usn-2013-1
https://bugs.launchpad.net/maas/+bug/1158425
https://launchpad.net/maas/+milestone/13.10
http://secunia.com/advisories/55567
http://ubuntu.com/usn/usn-2013-1
https://bugs.launchpad.net/maas/+bug/1158425
https://launchpad.net/maas/+milestone/13.10

Products affected by CVE-2013-1057

Canonical » Maas » Version: Any

cpe:2.3:a:canonical:maas:*
Canonical » Maas » Version: 12.04.1

cpe:2.3:a:canonical:maas:12.04.1
Canonical » Maas » Version: 12.04.2

cpe:2.3:a:canonical:maas:12.04.2
Canonical » Maas » Version: 12.04.3

cpe:2.3:a:canonical:maas:12.04.3
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04
Canonical » Ubuntu Linux » Version: 12.10

cpe:2.3:o:canonical:ubuntu_linux:12.10
Canonical » Ubuntu Linux » Version: 13.04

cpe:2.3:o:canonical:ubuntu_linux:13.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1057

Products

Pricing

Contact Us