GHSA-8cwf-xm55-w837

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.

Ссылки

EPSS

Процентиль: 71%

0.00682

Низкий

7.5 High

CVSS3

CVE ID

CVE-2014-1426

Дефекты

CWE-20

Связанные уязвимости

CVE-2014-1426

CVSS3: 8.6

ubuntu

почти 7 лет назад

A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.

CVE-2014-1426

CVSS3: 8.6

nvd

почти 7 лет назад

A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.

EPSS

Процентиль: 71%

0.00682

Низкий

7.5 High

CVSS3

CVE ID

CVE-2014-1426

Дефекты

CWE-20