cockpit-hq/cockpit is vulnerable to Unrestricted File Upload. The vulnerability is due to an improper file upload checks within the /media/api
POST endpoint which can be exploited to compromise the system’s integrity, allowing unauthorized access or data manipulation.
CPE | Name | Operator | Version |
---|---|---|---|
cockpit-hq/cockpit | le | 2.6.3 | |
cockpit-hq/cockpit | le | 2.6.3 |