CVE-2021-40323

Опубликовано: 04 окт. 2021

Источник: debian

EPSS Критический

Описание

Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.

Пакет	Статус	Версия исправления	Релиз	Тип
cobbler	removed			package

EPSS

Процентиль: 100%

0.93171

Критический

CVE-2021-40323

CVSS3: 9.8

ubuntu

больше 4 лет назад

Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.

CVE-2021-40323

CVSS3: 9.1

redhat

больше 4 лет назад

Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.

CVE-2021-40323

CVSS3: 9.8

nvd

больше 4 лет назад

Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.

GHSA-cpqf-3c3r-c9g2

CVSS3: 9.8

github

больше 4 лет назад

Cobbler before 3.3.0 allows log poisoning

EPSS

Процентиль: 100%

0.93171

Критический