5.8
CVE-2013-1058
- EPSS 1.94%
- Veröffentlicht 23.11.2013 18:55:04
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle security@ubuntu.com
- CVE-Watchlists
- Unerledigt
maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these files via a man-in-the-middle (MITM) attack.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Canonical ≫ Ubuntu Linux Version12.04 Update- Editionlts
Canonical ≫ Ubuntu Linux Version12.10
Canonical ≫ Ubuntu Linux Version13.04
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.94% | 0.774 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:P
|
http://secunia.com/advisories/55567
https://launchpad.net/maas/+milestone/13.10
http://www.ubuntu.com/usn/USN-2013-1
https://bugs.launchpad.net/maas/%2Bbug/1039513