All 6 CVE vulnerabilities found in MAAS, with AI-generated Chinese analysis, references, and POCs.
Vendor: Ubuntu
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-7044 | Privilege Escalation in MAAS via Websocket Request Manipulation CWE-269 | 7.7 | High | 2025-12-03 |
| CVE-2024-6107 | Canonical MAAS 安全漏洞 CWE-287 | 9.6 | Critical | 2025-07-21 |
| CVE-2014-1426 | get_file_by_name does not check owner | 7.5 | - | 2019-04-22 |
| CVE-2014-1427 | MAAS API vulnerable to CSRF attack | 8.2 | - | 2019-04-22 |
| CVE-2014-1428 | uuid.uuid1() is not suitable as an unguessable identifier/token | 4.0 | - | 2019-04-22 |
| CVE-2015-1320 | Probe-and-enlist for SeaMicro chassis writes password to the log | 9.1 | - | 2019-04-22 |
All 6 known CVE vulnerabilities affecting MAAS with full Chinese analysis, references, and POCs where available.