Vulnerability Database
Blog
FAQ
Docs
PYSEC-2021-374
See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/cobbler/PYSEC-2021-374.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2021-374
Aliases
CVE-2021-40324
GHSA-4cfr-gjfx-fj3x
Published
2021-10-04T06:15:00Z
Modified
2023-11-01T04:56:19.342701Z
Summary
[none]
Details
Cobbler before 3.3.0 allows arbitrary file write operations via upload
log
data.
References
https://github.com/cobbler/cobbler/commit/d8f60bbf14a838c8c8a1dba98086b223e35fe70a
https://github.com/cobbler/cobbler/releases/tag/v3.3.0
https://github.com/advisories/GHSA-4cfr-gjfx-fj3x
Affected packages
PyPI
/
cobbler
Package
Name
cobbler
View open source insights on deps.dev
Purl
pkg:pypi/cobbler
Affected ranges
Type
GIT
Repo
https://github.com/cobbler/cobbler
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
d8f60bbf14a838c8c8a1dba98086b223e35fe70a
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.3.0
Affected versions
0.*
0.6.3-2
3.*
3.1.2
3.2.1
3.2.2
PYSEC-2021-374 - OSV