A vulnerability in the REST API of Ubuntu MAAS allows an attacker to cause a logged-in user to execute commands via cross-site scripting. This issue affects MAAS versions prior to 1.9.2.

Related CVEs

CVE-2014-1427

Key Information

GHSA ID

GHSA-r5fr-m3x2-j65q

Published

May 17, 2022 7:56 PM

Last Modified

April 3, 2024 11:58 PM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: November 25, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.