CVE List

CVE-2021-40323

Severe 9.8

Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.

Published October 4, 2021.

Affected software

Reference links

Sign Up for Alerts