Canonical Landscape
By the Year
In 2023 there have been 3 vulnerabilities in Canonical Landscape with an average score of 7.3 out of ten. Landscape did not have any published security vulnerabilities last year. That is, 3 more vulnerabilities have already been reported in 2023 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 3 | 7.27 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Landscape vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Canonical Landscape Security Vulnerabilities
Landscape allowed URLs
CVE-2023-32551
6.1 - Medium
- June 06, 2023
Landscape allowed URLs which caused open redirection.
Open Redirect
Landscape's server-status page exposed sensitive system information
CVE-2023-32550
8.2 - High
- June 06, 2023
Landscape's server-status page exposed sensitive system information. This data leak included GET requests which contain information to attack and leak further information from the Landscape API.
Exposure of Resource to Wrong Sphere
Landscape cryptographic keys were insecurely generated with a weak pseudo-random generator.
CVE-2023-32549
7.5 - High
- June 06, 2023
Landscape cryptographic keys were insecurely generated with a weak pseudo-random generator.
PRNG
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Canonical Landscape or by Canonical? Click the Watch button to subscribe.
