CVE-2014-1426

Summary

A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.

Affected Software

VendorProductVersion RangeStatus
Ubuntumaasunspecified < 1.9.2affected

Weaknesses

  • Missing access controls.

ADP Enrichment

CVE Program Container

Additional References

References