CVE-2018-10931

CRITICAL

Cobbler 2.6.x - Privilege Escalation

Title source: llm

Description

It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

References (4)

[Issue Tracking, Mitigation, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10931

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:2372

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMWK5KCCZXOGOYNR2H6BWDSABTQ5NYJA/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5P5Q4ACIVZ5D4KSUDLGRTOKGGB4U42SD/

Scores

CVSS v3 9.8

EPSS 0.3605

EPSS Percentile 97.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-749

Status published

Products (5)

cobbler_project/cobbler 2.6.0 - 2.6.11

pypi/cobbler 2.6.0 - 3.0.0PyPI

redhat/satellite 5.6

redhat/satellite 5.7

redhat/satellite 5.8

Published Aug 09, 2018

Tracked Since Feb 18, 2026