A flaw was found in Cobbler. Authorization bypass allows modifying settings. References: https://lists.suse.com/pipermail/sle-security-updates/2021-September/009468.html https://github.com/cobbler/cobbler/issues/2795 https://github.com/cobbler/cobbler/pull/2794
Created cobbler tracking bugs for this issue: Affects: epel-7 [bug 2006907] Affects: fedora-all [bug 2006906]