Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
template_api.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disable the ability of the Cheetah template engine to execute Python statements contained in templates, which allows remote authenticated administrators to execute arbitrary code via a crafted kickstart template file, a different vulnerability than CVE-2008-6954.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cobbler 代码注入漏洞
Vulnerability Description
Cobbler是一款网络安装服务器套件,它主要用于快速建立Linux网络安装环境。 Cobbler 2.0.7之前版本存在代码注入漏洞。远程认证管理员可以借助特制kickstart模板文件执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A