2006840 – (CVE-2021-40323) CVE-2021-40323 cobbler: Arbitrary File Disclosure/Template Injection via generate_script RPC method

Bug 2006840 (CVE-2021-40323) - CVE-2021-40323 cobbler: Arbitrary File Disclosure/Template Injection via generate_script RPC method

Summary: CVE-2021-40323 cobbler: Arbitrary File Disclosure/Template Injection via gene...

Keywords:
Status:	CLOSED WONTFIX
Alias:	CVE-2021-40323
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2006884 2006885
Blocks:	2006908
TreeView+	depends on / blocked

Reported:	2021-09-22 14:03 UTC by Pedro Sampaio
Modified:	2021-09-30 08:15 UTC (History)
CC List:	10 users (show)
Fixed In Version:	cobbler 3.3.0, cobbler 3.2.2
Clone Of:
Environment:
Last Closed:	2021-09-24 08:48:57 UTC
Embargoed:

Attachments	(Terms of Use)

Description Pedro Sampaio 2021-09-22 14:03:05 UTC

An arbitrary file disclosure/template injection flaw was found in Cobbler. It exposes an XMLRPC API interface that allows users to request some information without authentication.

References:

https://lists.suse.com/pipermail/sle-security-updates/2021-September/009468.html
https://github.com/cobbler/cobbler/issues/2795
https://github.com/cobbler/cobbler/pull/2794

Comment 1 Pedro Sampaio 2021-09-22 15:28:39 UTC

Created cobbler tracking bugs for this issue:

Affects: epel-7 [bug 2006885]
Affects: fedora-all [bug 2006884]

Note You need to log in before you can comment on or make changes to this bug.