CVE-2014-3225
published 2014-05-14CVE-2014-3225: Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the…
PriorityP432medium4CVSS 2.0
AVNACLAuSCPINAN
EXPLOIT
EPSS
8.81%
94.5th percentile
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cobbler_project | cobbler | >= 0 < 2.4.1-0ubuntu2+esm1 | 2.4.1-0ubuntu2+esm1 |
| cobbler_project | cobbler | >= 2.4.0 < 2.4.7 | 2.4.7 |
| cobbler_project | cobbler | >= 2.6.0 < 2.6.4 | 2.6.4 |
| cobblerd | cobbler | — | — |
| cobblerd | cobbler | — | — |
| cobblerd | cobbler | — | — |
| cobblerd | cobbler | — | — |
| cobblerd | cobbler | — | — |
| cobblerd | cobbler | — | — |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
osv4.0MEDIUM
vendor_redhat4.0MEDIUM
vendor_ubuntu4.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
cobbler vulnerabilities
osv·2023-11-13·CVSS 4.0
CVE-2014-3225 [MEDIUM] cobbler vulnerabilities
cobbler vulnerabilities
It was discovered that Cobbler did not properly handle user input, which
could result in an absolute path traversal. An attacker could possibly
use this issue to read arbitrary files. (CVE-2014-3225)
It was discovered that Cobbler did not properly handle user input, which
could result in command injection. An attacker could possibly use this
issue to execute arbitrary code with high privileges.
(CVE-2017-1000469, CVE-2021-45082)
It was discovered that Cobbler did not properly hide private functions in
a class. A remote attacker could possibly use this issue to gain high
privileges and upload files to an arbitrary location.
(CVE-2018-10931, CVE-2018-1000225, CVE-2018-1000226)
Nicolas Chatelain discovered that Cobbler did not properly handle user
input, which coul
GHSA
Cobbler Path Traversal vulnerability
ghsa·2022-05-14
CVE-2014-3225 [MEDIUM] CWE-22 Cobbler Path Traversal vulnerability
Cobbler Path Traversal vulnerability
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
OSV
Cobbler Path Traversal vulnerability
osv·2022-05-14
CVE-2014-3225 [MEDIUM] Cobbler Path Traversal vulnerability
Cobbler Path Traversal vulnerability
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
OSV
CVE-2014-3225: Absolute path traversal vulnerability in the web interface in Cobbler 2
osv·2014-05-14·CVSS 4.0
CVE-2014-3225 [MEDIUM] CVE-2014-3225: Absolute path traversal vulnerability in the web interface in Cobbler 2
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
Ubuntu
Cobbler vulnerabilities
vendor_ubuntu·2023-11-13·CVSS 4.0
CVE-2021-40323 [MEDIUM] Cobbler vulnerabilities
Title: Cobbler vulnerabilities
Summary: Several security issues were fixed in Cobbler.
It was discovered that Cobbler did not properly handle user input, which
could result in an absolute path traversal. An attacker could possibly
use this issue to read arbitrary files. (CVE-2014-3225)
It was discovered that Cobbler did not properly handle user input, which
could result in command injection. An attacker could possibly use this
issue to execute arbitrary code with high privileges.
(CVE-2017-1000469, CVE-2021-45082)
It was discovered that Cobbler did not properly hide private functions in
a class. A remote attacker could possibly use this issue to gain high
privileges and upload files to an arbitrary location.
(CVE-2018-10931, CVE-2018-1000225, CVE-2018-1000226)
Nicolas Chatelain discov
Red Hat
cobbler: local file inclusion over remote installs
vendor_redhat·2014-05-08·CVSS 4.0
CVE-2014-3225 [MEDIUM] cobbler: local file inclusion over remote installs
cobbler: local file inclusion over remote installs
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
Statement: Red Hat Network Satellite 5 is now in Extended Life Cycle phase of the support and maintenance life cycle. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/site/support/policy/updates/satellite.
Package: cobbler (Red Hat Satellite 5.6) - Will not fix
No detection rules found.
Bugzilla
CVE-2014-3225 cobbler: local file inclusion over remote installs
bugzilla·2014-05-08·CVSS 4.0
CVE-2014-3225 [MEDIUM] CVE-2014-3225 cobbler: local file inclusion over remote installs
CVE-2014-3225 cobbler: local file inclusion over remote installs
It was reported [1] that Cobbler suffers from a local file inclusion vulnerability where a remote user able to access the Cobbler WebUI could specify a full path to any desired file in the Kickstart value, and view the contents of that file. For instance, by specifying '/etc/passwd' as the Kickstart value, a remote user could view the contents of that (or any other protected local file) on the system.
There is currently no upstream fix available.
[1] https://github.com/cobbler/cobbler/issues/939
Discussion:
Created cobbler tracking bugs for this issue:
Affects: fedora-all [bug 1095845]
Affects: epel-all [bug 1095846]
---
Statement:
Red Hat Network Satellite 5 is now in Extended Life Cycle phase of the support and mai
Bugzilla
CVE-2014-3225 cobbler: local file inclusion over remote installs [fedora-all]
bugzilla·2014-05-08·CVSS 4.0
CVE-2014-3225 [MEDIUM] CVE-2014-3225 cobbler: local file inclusion over remote installs [fedora-all]
CVE-2014-3225 cobbler: local file inclusion over remote installs [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, use the bodhi submission link noted
in the next comment(s). This will include the bug IDs of this tracking
bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
NOTE: this issue affects multiple
Bugzilla
CVE-2014-3225 cobbler: local file inclusion over remote installs [epel-all]
bugzilla·2014-05-08·CVSS 4.0
CVE-2014-3225 [MEDIUM] CVE-2014-3225 cobbler: local file inclusion over remote installs [epel-all]
CVE-2014-3225 cobbler: local file inclusion over remote installs [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, use the bodhi submission link noted
in the next comment(s). This will include the bug IDs of this tracking
bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
NOTE: this issue affects multip
http://packetstormsecurity.com/files/126553/Cobbler-Local-File-Inclusion.htmlhttp://seclists.org/oss-sec/2014/q2/273http://seclists.org/oss-sec/2014/q2/274http://www.exploit-db.com/exploits/33252http://www.osvdb.org/106759http://www.securityfocus.com/archive/1/532094/100/0/threadedhttp://www.securityfocus.com/bid/67277https://github.com/cobbler/cobbler/issues/939https://www.youtube.com/watch?v=vuBaoQUFEYQ&feature=youtu.behttp://packetstormsecurity.com/files/126553/Cobbler-Local-File-Inclusion.htmlhttp://seclists.org/oss-sec/2014/q2/273http://seclists.org/oss-sec/2014/q2/274http://www.exploit-db.com/exploits/33252http://www.osvdb.org/106759http://www.securityfocus.com/archive/1/532094/100/0/threadedhttp://www.securityfocus.com/bid/67277https://github.com/cobbler/cobbler/issues/939https://www.youtube.com/watch?v=vuBaoQUFEYQ&feature=youtu.be
2014-05-14
Published