Vulnerability Details CVE-2013-1058
maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these files via a man-in-the-middle (MITM) attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v2 Score 5.8
Products affected by CVE-2013-1058
-
cpe:2.3:a:canonical:maas:*
-
cpe:2.3:a:canonical:maas:12.04.1
-
cpe:2.3:a:canonical:maas:12.04.2
-
cpe:2.3:a:canonical:maas:12.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:12.04
-
cpe:2.3:o:canonical:ubuntu_linux:12.10
-
cpe:2.3:o:canonical:ubuntu_linux:13.04