Ubuntu Metal As A Service — known CVE vulnerabilities
Every CVE whose affected-product data names Ubuntu Metal As A Service, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2013-1070 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote attackers to inject…
CVE-2013-1069 — CVSS 2.1 (low): Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 uses world-readable permissions for txlongpoll.yaml, which allows local users to obtain…