CVE-2018-10931 – It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface clas …

0

Vuln ID: CVE-2018-10931

Published:  2018-08-09  20:29:00Z

Description: It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

Source: NVD.NIST.GOV