Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2012-2395

Опубликовано: 16 июн. 2012
Источник: debian
EPSS Низкий

Описание

Incomplete blacklist vulnerability in action_power.py in Cobbler 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) username or (2) password fields to the power_system method in the xmlrpc API.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
cobblernot-affectedpackage

EPSS

Процентиль: 75%
0.00872
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2012-2395

ubuntu
больше 13 лет назад

Incomplete blacklist vulnerability in action_power.py in Cobbler 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) username or (2) password fields to the power_system method in the xmlrpc API.

redhat логотип

CVE-2012-2395

redhat
почти 14 лет назад

Incomplete blacklist vulnerability in action_power.py in Cobbler 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) username or (2) password fields to the power_system method in the xmlrpc API.

nvd логотип

CVE-2012-2395

nvd
больше 13 лет назад

Incomplete blacklist vulnerability in action_power.py in Cobbler 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) username or (2) password fields to the power_system method in the xmlrpc API.

github логотип

GHSA-g34c-mg6m-xvxj

github
больше 3 лет назад

Cobbler subject to Command Injection

suse-cvrf логотип

openSUSE-SU-2021:0046-1

suse-cvrf
около 5 лет назад

Security update for cobbler

EPSS

Процентиль: 75%
0.00872
Низкий