CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-1427

A vulnerability in the REST API of Ubuntu MAAS allows an attacker to cause a logged-in user to execute commands via cross-site scripting. This issue affects MAAS versions prior to 1.9.2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.7%

CVSS Severity

CVSS v3 Score 9.6

CVSS v2 Score 4.3

References

https://launchpad.net/maas/+milestone/1.9.2
https://launchpad.net/maas/+milestone/1.9.2

Products affected by CVE-2014-1427

Canonical » Metal As A Service » Version: 1.9.0

cpe:2.3:a:canonical:metal_as_a_service:1.9.0
Canonical » Metal As A Service » Version: 1.9.1

cpe:2.3:a:canonical:metal_as_a_service:1.9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-1427

Products

Pricing

Contact Us