pkg:PyPI/cobbler

共 24 筆 CVECRITICAL6HIGH11MEDIUM2

✅ 檢查你的版本

所有已知漏洞

  • CRITICAL9.8CVE-2024-47533cobbler allows anyone to connect to cobbler XML-RPC server with known password and make changes
    >= 3.3.0, < 3.3.7
  • CRITICAL9.8CVE-2017-1000469Cobbler vulnerable to arbitrary code execution
    from 0, < 3.0.0
  • CRITICAL9.8CVE-2018-10931Cobbler has Exposed Dangerous Method or Function
    >= 2.6.0, < 3.0.0
  • CRITICAL9.8CVE-2018-1000226Cobbler Improper Validation of Security Tokens
    from 0, < 3.0.0
  • CRITICAL9.8CVE-2021-40323Cobbler before 3.3.0 allows log poisoning
    from 0, < d8f60bbf14a838c8c8a1dba98086b223e35fe70a | from 0, < 3.3.0
  • CRITICAL9.8CVE-2021-40323Cobbler before 3.3.0 allows log poisoning
    from 0, < 3.3.0
  • HIGH8.8CVE-2011-4952Cobbler Web Interface Lacks CSRF Protection
    from 0, < 2.6.0
  • HIGH8.2CVE-2022-0860Improper Authorization in cobbler
    from 0, < 9044aa990a94752fa5bd5a24051adde099280bfa | from 0, < 3.3.2
  • HIGH8.2CVE-2022-0860Improper Authorization in cobbler
    from 0, < 3.3.2
  • HIGH7.8CVE-2021-45082Command Injection in Cobbler
    from 0, < 3.3.1
  • HIGH7.8CVE-2021-45082Command Injection in Cobbler
    from 0, < 3.3.1
  • HIGH7.5CVE-2021-40325Cobbler before 3.3.0 allows authorization bypass for modification of settings.
    from 0, < 3.3.0
  • HIGH7.5CVE-2021-40325Cobbler before 3.3.0 allows authorization bypass for modification of settings.
    from 0, < d8f60bbf14a838c8c8a1dba98086b223e35fe70a | from 0, < 3.3.0
  • HIGH7.5CVE-2021-40324Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data.
    from 0, < 3.3.0
  • HIGH7.5CVE-2021-40324Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data.
    from 0, < d8f60bbf14a838c8c8a1dba98086b223e35fe70a | from 0, < 3.3.0
  • HIGH7.1CVE-2021-45083Incorrect Default Permissions in Cobbler
    from 0, < 3.3.1
  • HIGH7.1CVE-2021-45083Incorrect Default Permissions in Cobbler
    from 0, < 3.3.1
  • MEDIUM6.1CVE-2018-1000225Cobbler XSS Vulnerability
    from 0, <= 2.6.11
  • MEDIUM6.1CVE-2016-9605Cobbler Arbitrary File Read
    from 0, <= 2.6.11-1
  • CVE-2010-2235Cobbler is vulnerable to code injection
    from 0, < 2.0.7
  • CVE-2012-2395Cobbler subject to Command Injection
    from 0, < 2.6.0
  • CVE-2011-4953Cobbler vulnerable to code injection via unsafe YAML loading
    from 0, < 2.6.0
  • CVE-2008-6954Cobbler Web Interface Kickstart Template Remote Privilege Escalation Vulnerability
    from 0, < 1.2.9
  • CVE-2014-3225Cobbler Path Traversal vulnerability
    >= 2.6.0, < 2.6.4