CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-1426

A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.6%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 5.0

References

https://launchpad.net/maas/+milestone/1.9.2
https://launchpad.net/maas/+milestone/1.9.2

Products affected by CVE-2014-1426

Canonical » Metal As A Service » Version: 1.9.0

cpe:2.3:a:canonical:metal_as_a_service:1.9.0
Canonical » Metal As A Service » Version: 1.9.1

cpe:2.3:a:canonical:metal_as_a_service:1.9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-1426

Products

Pricing

Contact Us