2 matches found
CVE-2021-40324
CVE-2021-40324 affects Cobbler prior to 3.3.0, where an input-filtering deficiency in upload_log_data enables arbitrary file write operations. Public sources (Ubuntu USN-6475-1, openSUSE/SUSE advisories) describe remote code execution/read/write via the Cobbler XML-RPC interface tied to these CVE...
CVE-2021-40324
Cobbler before 3.3.0 allows arbitrary file write operations via uploadlogdata...