Lucene search

K
osvGoogleOSV:CVE-2018-10931
HistoryAug 09, 2018 - 8:29 p.m.

CVE-2018-10931

2018-08-0920:29:00
Google
osv.dev
7

6.9 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%

It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

6.9 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%