CVE-2014-1428

Summary

A vulnerability in generate_filestorage_key of Ubuntu MAAS allows an attacker to brute-force filenames. This issue affects Ubuntu MAAS versions prior to 1.9.2.

Affected Software

VendorProductVersion RangeStatus
UbuntuMAASunspecified < 1.9.2affected

Weaknesses

  • Insufficient randomness in generated filenames.

ADP Enrichment

CVE Program Container

Additional References

References