Cobblerd Cobbler vulnerabilities
2 known vulnerabilities affecting cobblerd/cobbler.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-1000226CRITICALCVSS 9.8PoC≥ 2.0.02018-08-20
CVE-2018-1000226 [CRITICAL] CWE-732 CVE-2018-1000226: Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at lea
Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Incorrect Access Control vulnerability in XMLRPC API (/cobbler_api) that can result in Privilege escalation, data manipulation or exfiltration, LDAP credential harvesting. Th
nvd
CVE-2014-3225MEDIUMCVSS 4.0PoCv2.4.0v2.4.1+4 more2014-05-14
CVE-2014-3225 [MEDIUM] CWE-22 CVE-2014-3225: Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows rem
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
nvd