CVE-2009-5021Dehaan Cobbler vulnerability

CWE-2553 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 47.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Michael Dehaan Cobbler
Timeline
PublishedDec 9
Latest updateMay 2

Description

Cobbler before 1.6.1 does not properly determine whether an installation has the default password, which makes it easier for attackers to obtain access by using this password.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDmichael_dehaan/cobbler1.4.3-4+58

Patches

Patch: people.fedoraproject.orgPatch: people.fedoraproject.org

🔴Vulnerability Details

2
GHSA
GHSA-8r97-qcvc-9gcw: Cobbler before 12022-05-02
CVEList
CVE-2009-5021: Cobbler before 12010-12-09
CVE-2009-5021 — Michael Dehaan Cobbler vulnerability | cvebase