CVE-2018-10931

Aliases:GHSA-8787-63px-3m23
Advisory lineage Upstream: 0 Downstream: 10
Modified
Published: 09 Aug 2018, 20:00
Last modified:05 Aug 2024, 07:54

Vulnerability Summary

Overall Risk (default)
high
70/100
CVSS Score
9.8 CRITICAL
v3.0 (cve.org)
EPSS Score
36.05% HIGH
36% probability -31.73%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

09 Aug 2018, 20:00
Published
Vulnerability first disclosed
05 Aug 2024, 07:54
Last Modified
Vulnerability information updated

Description

It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

CVSS Metrics

  • v3.0CRITICALScore: 9.8CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • v2.0HIGHScore: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 36.05% Percentile: 97%

Techniques & Countermeasures

  • CWE-749Exposed Dangerous Method or Function

    The product provides an Applications Programming Interface (API) or similar interface for interaction with external actors, but the interface includes a dangerous method or function that is not properly restricted.

Affected Systems

  • cobbler_projectcobbler

    ≥ 2.6.0, ≤ 2.6.11

  • PyPIcobbler

    ≥ 2.6.0, < 3.0.0

  • redhatsatellite

    5.6 | 5.7 | 5.8

  • the cobbler projectcobbler

    ≥ 2.6.0, < 2.7.0

References (16)