CVE-2011-4953
published 2014-10-27CVE-2011-4953: The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use…
PriorityP336medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
2.17%
80.0th percentile
The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the yaml.load function instead of the yaml.safe_load function, as demonstrated using Puppet.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cobbler_project | cobbler | <= 2.2.1 | — |
| cobbler_project | cobbler | >= 0 < 2.6.0 | 2.6.0 |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Cobbler vulnerable to code injection via unsafe YAML loading
ghsa·2022-05-17
CVE-2011-4953 [MEDIUM] CWE-20 Cobbler vulnerable to code injection via unsafe YAML loading
Cobbler vulnerable to code injection via unsafe YAML loading
The `set_mgmt_parameters` function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the `yaml.load` function instead of the `yaml.safe_load function`, as demonstrated using Puppet.
OSV
Cobbler vulnerable to code injection via unsafe YAML loading
osv·2022-05-17
CVE-2011-4953 [MEDIUM] Cobbler vulnerable to code injection via unsafe YAML loading
Cobbler vulnerable to code injection via unsafe YAML loading
The `set_mgmt_parameters` function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the `yaml.load` function instead of the `yaml.safe_load function`, as demonstrated using Puppet.
Red Hat
cobbler: Privilege escalation by processing of crafted management parameters
vendor_redhat·2011-09-28·CVSS 6.8
CVE-2011-4953 [MEDIUM] CWE-96 cobbler: Privilege escalation by processing of crafted management parameters
cobbler: Privilege escalation by processing of crafted management parameters
The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the yaml.load function instead of the yaml.safe_load function, as demonstrated using Puppet.
Statement: This issue did not affect the version of cobbler as shipped with Red Hat Network Satellite Server 5.4 as it did not include the upstream commit d7b30b5fca5097c544ca37ade8c945a3106b1896 that introduced this flaw.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00019.htmlhttps://bugs.launchpad.net/ubuntu/oneiric/+source/cobbler/+bug/858883https://bugzilla.novell.com/show_bug.cgi?id=757062http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00019.htmlhttps://bugs.launchpad.net/ubuntu/oneiric/+source/cobbler/+bug/858883https://bugzilla.novell.com/show_bug.cgi?id=757062
2014-10-27
Published