Every CVE whose affected-product data names Canonical Maas, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-7044 — CVSS 7.7 (high): An Improper Input Validation vulnerability exists in the user websocket handler of MAAS. An authenticated, unprivileged attacker can…
CVE-2013-1058 — CVSS 5.8 (medium): maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these…
CVE-2013-1057 — CVSS 4.4 (medium): Untrusted search path vulnerability in maas-import-pxe-files in MAAS before 13.10 allows local users to execute arbitrary code via a Trojan…