CVE-2014-3225

2014-05-13T20:55:11
ID CVE-2014-3225
Type cve
Reporter NVD
Modified 2018-10-09T15:43:43

Description

Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.