Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web interface (CobblerWeb) in Cobbler before 1.2.9 allows remote authenticated users to execute arbitrary Python code in cobblerd by editing a Cheetah kickstart template to import arbitrary Python modules.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Michael_Dehaan Cobbler Web Interface Kickstart Template远程权限升级漏洞
Vulnerability Description
1.2.9版本以前的Cobbler的网络界面(CobblerWeb)会允许远程攻击者通过编辑一个Cheetah kickstart模板来输入任意Python模块,以执行任意Python代码。
CVSS Information
N/A
Vulnerability Type
N/A