Vulnerabilities > Ultimaker
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-03 | CVE-2024-8374 | Code Injection vulnerability in Ultimaker Cura UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via the 3MF format reader (/plugins/ThreeMFReader.py). | 7.8 |
| 2022-01-10 | CVE-2021-34086 | Cross-Site Request Forgery (CSRF) vulnerability in Ultimaker products In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. | 8.8 |
| 2022-01-10 | CVE-2021-34087 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Ultimaker products In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. | 7.1 |