| CVE-2024-6107 | | 0.00 | — | 0.00 | | Jul 21, 2025 | Due to insufficient verification, an attacker could use a malicious client to bypass authentication checks and run RPC commands in a region. This has been addressed in MAAS and updated in the corresponding snaps. |
| CVE-2013-1058 | | 0.00 | — | 0.01 | | Nov 23, 2013 | maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these files via a man-in-the-middle (MITM) attack. |
| CVE-2013-1057 | | 0.00 | — | 0.00 | | Nov 18, 2013 | Untrusted search path vulnerability in maas-import-pxe-files in MAAS before 13.10 allows local users to execute arbitrary code via a Trojan horse import_pxe_files configuration file in the current working directory. |
