Lucene search
Redhat.comRH:CVE-2021-40324HistorySep 22, 2021 - 3:56 p.m.
CVE-2021-40324
2021-09-2215:56:39
redhat.com
access.redhat.com
17
0.001 Low
EPSS
Percentile
26.2%
A flaw was found in cobbler. The flaw lies in cobblerd’s anamon support, specifically the upload_log_data XMLRPC function. An anamon_enabled setting, if enabled, accepts unsanitized user-supplied parameters. This flaw allows an attacker to write arbitrary files to the system. The highest threat from this vulnerability is to confidentiality, integrity, and availability.
Related
cvelist
cvelist
CVE-2021-40324
2021-10-04 05:39:51
osv
osv
PYSEC-2021-374
2021-10-04 06:15:00
CVE-2021-40324
2021-10-04 06:15:07
cnvd
cnvd
Cobbler Arbitrary File Writing Vulnerability
2021-10-08 00:00:00
gitlab
gitlab
Unrestricted Upload of File with Dangerous Type
2021-10-05 00:00:00
ubuntucve
ubuntucve
CVE-2021-40324
2021-10-04 00:00:00
cve
cve
CVE-2021-40324
2021-10-04 06:15:00
prion
prion
Design/Logic Flaw
2021-10-04 06:15:00
github
github
openvas
openvas
Cobbler < 3.3.0 Multiple Vulnerabilities
2022-02-23 00:00:00
Fedora: Security Advisory for cobbler (FEDORA-2021-4def184821)
2021-10-03 00:00:00
Fedora: Security Advisory for cobbler (FEDORA-2021-5f1e30aa56)
2021-10-03 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: cobbler-3.2.2-2.fc35
2021-09-29 00:21:55
[SECURITY] Fedora 33 Update: cobbler-3.2.2-2.fc33
2021-10-02 01:10:24
[SECURITY] Fedora 34 Update: cobbler-3.2.2-2.fc34
2021-10-02 01:28:42
suse
suse
Security update for cobbler (important)
2022-03-01 00:00:00
ubuntu
ubuntu
Cobbler vulnerabilities
2023-11-13 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : Cobbler vulnerabilities (USN-6475-1)
2023-11-13 00:00:00