Skip to main content

Ultimaker Cura

2 CVEs product

Monthly

CVE-2024-51330 MEDIUM This Month

An issue in UltiMaker Cura v.4.41 and 5.8.1 and before allows a local attacker to execute arbitrary code via Inter-process communication (IPC) mechanism between Cura application and CuraEngine. Rated medium severity (CVSS 5.1), this vulnerability is low attack complexity. No vendor patch available.

RCE Code Injection Ultimaker Cura
NVD GitHub VulDB
CVSS 3.1
5.1
EPSS
0.2%
CVE-2024-8374 HIGH PATCH This Week

UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via the 3MF format reader (/plugins/ThreeMFReader.py). Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Code Injection Python RCE Ultimaker Cura
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
EPSS 0% CVSS 5.1
MEDIUM This Month

An issue in UltiMaker Cura v.4.41 and 5.8.1 and before allows a local attacker to execute arbitrary code via Inter-process communication (IPC) mechanism between Cura application and CuraEngine. Rated medium severity (CVSS 5.1), this vulnerability is low attack complexity. No vendor patch available.

RCE Code Injection Ultimaker Cura
NVD GitHub VulDB
EPSS 0% CVSS 7.8
HIGH PATCH This Week

UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via the 3MF format reader (/plugins/ThreeMFReader.py). Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Code Injection Python RCE +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy