CVE-2018-10931Exposed Dangerous Method or Function in Project Cobbler

CWE-749Exposed Dangerous Method or FunctionCWE-732Incorrect Permission AssignmentCWE-306Missing Authentication for Critical Function14 documents8 sources
Severity
9.8CRITICALNVD
EPSS
36.0%
top 2.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Cobbler Project CobblerTHE Cobbler Project CobblerRedhat Satellite
Timeline
PublishedAug 9
Latest updateNov 13

Description

It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

PyPIcobbler_project/cobbler2.6.03.0.0
Ubuntucobbler_project/cobbler< 2.4.1-0ubuntu2+esm1
NVDcobbler_project/cobbler2.6.02.6.11
NVDredhat/satellite5.6, 5.7, 5.8+2

🔴Vulnerability Details

6
OSV
cobbler vulnerabilities2023-11-13
OSV
Cobbler has Exposed Dangerous Method or Function2022-05-13
GHSA
Cobbler has Exposed Dangerous Method or Function2022-05-13
GHSA
Cobbler Improper Validation of Security Tokens2022-05-13
CVEList
CVE-2018-10931: It was found that cobbler 22018-08-09

💥Exploits & PoCs

1
Nuclei
Cobbler - Authentication Bypass

📋Vendor Advisories

3
Ubuntu
Cobbler vulnerabilities2023-11-13
Red Hat
cobbler: CobblerXMLRPCInterface exports all its methods over XMLRPC2018-08-09
Red Hat
cobbler: XMLRPC API endpoints are not correctly validating security tokens2018-08-02

💬Community

3
Bugzilla
CVE-2018-10931 cobbler: CobblerXMLRPCInterface exports all its methods over XMLRPC [epel-all]2018-08-09
Bugzilla
CVE-2018-10931 cobbler: CobblerXMLRPCInterface exports all its methods over XMLRPC [fedora-all]2018-08-09
Bugzilla
CVE-2018-10931 cobbler: CobblerXMLRPCInterface exports all its methods over XMLRPC2018-08-08
CVE-2018-10931 — Exposed Dangerous Method or Function | cvebase