CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2235

template_api.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disable the ability of the Cheetah template engine to execute Python statements contained in templates, which allows remote authenticated administrators to execute arbitrary code via a crafted kickstart template file, a different vulnerability than CVE-2008-6954.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 80.1%

CVSS Severity

CVSS v2 Score 8.5

References

Products affected by CVE-2010-2235

Michael Dehaan » Cobbler » Version: Any

cpe:2.3:a:michael_dehaan:cobbler:*
Michael Dehaan » Cobbler » Version: 0.1.1.7

cpe:2.3:a:michael_dehaan:cobbler:0.1.1.7
Michael Dehaan » Cobbler » Version: 0.2.1

cpe:2.3:a:michael_dehaan:cobbler:0.2.1
Michael Dehaan » Cobbler » Version: 0.2.2

cpe:2.3:a:michael_dehaan:cobbler:0.2.2
Michael Dehaan » Cobbler » Version: 0.2.3

cpe:2.3:a:michael_dehaan:cobbler:0.2.3
Michael Dehaan » Cobbler » Version: 0.2.5

cpe:2.3:a:michael_dehaan:cobbler:0.2.5
Michael Dehaan » Cobbler » Version: 0.2.7

cpe:2.3:a:michael_dehaan:cobbler:0.2.7
Michael Dehaan » Cobbler » Version: 0.2.8

cpe:2.3:a:michael_dehaan:cobbler:0.2.8
Michael Dehaan » Cobbler » Version: 0.2.9

cpe:2.3:a:michael_dehaan:cobbler:0.2.9
Michael Dehaan » Cobbler » Version: 0.3.0

cpe:2.3:a:michael_dehaan:cobbler:0.3.0
Michael Dehaan » Cobbler » Version: 0.3.1

cpe:2.3:a:michael_dehaan:cobbler:0.3.1
Michael Dehaan » Cobbler » Version: 0.3.3

cpe:2.3:a:michael_dehaan:cobbler:0.3.3
Michael Dehaan » Cobbler » Version: 0.3.4

cpe:2.3:a:michael_dehaan:cobbler:0.3.4
Michael Dehaan » Cobbler » Version: 0.3.5

cpe:2.3:a:michael_dehaan:cobbler:0.3.5
Michael Dehaan » Cobbler » Version: 0.3.6

cpe:2.3:a:michael_dehaan:cobbler:0.3.6
Michael Dehaan » Cobbler » Version: 0.3.7

cpe:2.3:a:michael_dehaan:cobbler:0.3.7
Michael Dehaan » Cobbler » Version: 0.3.9

cpe:2.3:a:michael_dehaan:cobbler:0.3.9
Michael Dehaan » Cobbler » Version: 0.4.0

cpe:2.3:a:michael_dehaan:cobbler:0.4.0
Michael Dehaan » Cobbler » Version: 0.4.2

cpe:2.3:a:michael_dehaan:cobbler:0.4.2
Michael Dehaan » Cobbler » Version: 0.4.3

cpe:2.3:a:michael_dehaan:cobbler:0.4.3
Michael Dehaan » Cobbler » Version: 0.4.5

cpe:2.3:a:michael_dehaan:cobbler:0.4.5
Michael Dehaan » Cobbler » Version: 0.4.6

cpe:2.3:a:michael_dehaan:cobbler:0.4.6
Michael Dehaan » Cobbler » Version: 0.4.7

cpe:2.3:a:michael_dehaan:cobbler:0.4.7
Michael Dehaan » Cobbler » Version: 0.4.8

cpe:2.3:a:michael_dehaan:cobbler:0.4.8
Michael Dehaan » Cobbler » Version: 0.5.0

cpe:2.3:a:michael_dehaan:cobbler:0.5.0
Michael Dehaan » Cobbler » Version: 0.6.0

cpe:2.3:a:michael_dehaan:cobbler:0.6.0
Michael Dehaan » Cobbler » Version: 0.6.1

cpe:2.3:a:michael_dehaan:cobbler:0.6.1
Michael Dehaan » Cobbler » Version: 0.6.3

cpe:2.3:a:michael_dehaan:cobbler:0.6.3
Michael Dehaan » Cobbler » Version: 0.6.4

cpe:2.3:a:michael_dehaan:cobbler:0.6.4
Michael Dehaan » Cobbler » Version: 0.6.5

cpe:2.3:a:michael_dehaan:cobbler:0.6.5
Michael Dehaan » Cobbler » Version: 0.8.1

cpe:2.3:a:michael_dehaan:cobbler:0.8.1
Michael Dehaan » Cobbler » Version: 0.8.3

cpe:2.3:a:michael_dehaan:cobbler:0.8.3
Michael Dehaan » Cobbler » Version: 1.0.0

cpe:2.3:a:michael_dehaan:cobbler:1.0.0
Michael Dehaan » Cobbler » Version: 1.0.2

cpe:2.3:a:michael_dehaan:cobbler:1.0.2
Michael Dehaan » Cobbler » Version: 1.0.2-1

cpe:2.3:a:michael_dehaan:cobbler:1.0.2-1
Michael Dehaan » Cobbler » Version: 1.0.3-1

cpe:2.3:a:michael_dehaan:cobbler:1.0.3-1
Michael Dehaan » Cobbler » Version: 1.2.0

cpe:2.3:a:michael_dehaan:cobbler:1.2.0
Michael Dehaan » Cobbler » Version: 1.2.2

cpe:2.3:a:michael_dehaan:cobbler:1.2.2
Michael Dehaan » Cobbler » Version: 1.2.3

cpe:2.3:a:michael_dehaan:cobbler:1.2.3
Michael Dehaan » Cobbler » Version: 1.2.5

cpe:2.3:a:michael_dehaan:cobbler:1.2.5
Michael Dehaan » Cobbler » Version: 1.2.6

cpe:2.3:a:michael_dehaan:cobbler:1.2.6
Michael Dehaan » Cobbler » Version: 1.2.7

cpe:2.3:a:michael_dehaan:cobbler:1.2.7
Michael Dehaan » Cobbler » Version: 1.2.8

cpe:2.3:a:michael_dehaan:cobbler:1.2.8
Michael Dehaan » Cobbler » Version: 1.2.8-1

cpe:2.3:a:michael_dehaan:cobbler:1.2.8-1
Michael Dehaan » Cobbler » Version: 1.2.9

cpe:2.3:a:michael_dehaan:cobbler:1.2.9
Michael Dehaan » Cobbler » Version: 1.2.9-1

cpe:2.3:a:michael_dehaan:cobbler:1.2.9-1
Michael Dehaan » Cobbler » Version: 1.3.1

cpe:2.3:a:michael_dehaan:cobbler:1.3.1
Michael Dehaan » Cobbler » Version: 1.3.1-1

cpe:2.3:a:michael_dehaan:cobbler:1.3.1-1
Michael Dehaan » Cobbler » Version: 1.3.3

cpe:2.3:a:michael_dehaan:cobbler:1.3.3
Michael Dehaan » Cobbler » Version: 1.3.3-1

cpe:2.3:a:michael_dehaan:cobbler:1.3.3-1
Michael Dehaan » Cobbler » Version: 1.3.4

cpe:2.3:a:michael_dehaan:cobbler:1.3.4
Michael Dehaan » Cobbler » Version: 1.3.4-1

cpe:2.3:a:michael_dehaan:cobbler:1.3.4-1
Michael Dehaan » Cobbler » Version: 1.4.0

cpe:2.3:a:michael_dehaan:cobbler:1.4.0
Michael Dehaan » Cobbler » Version: 1.4.0-2

cpe:2.3:a:michael_dehaan:cobbler:1.4.0-2
Michael Dehaan » Cobbler » Version: 1.4.1

cpe:2.3:a:michael_dehaan:cobbler:1.4.1
Michael Dehaan » Cobbler » Version: 1.4.1-1

cpe:2.3:a:michael_dehaan:cobbler:1.4.1-1
Michael Dehaan » Cobbler » Version: 1.4.2

cpe:2.3:a:michael_dehaan:cobbler:1.4.2
Michael Dehaan » Cobbler » Version: 1.4.2-1

cpe:2.3:a:michael_dehaan:cobbler:1.4.2-1
Michael Dehaan » Cobbler » Version: 1.4.3

cpe:2.3:a:michael_dehaan:cobbler:1.4.3
Michael Dehaan » Cobbler » Version: 1.4.3-4

cpe:2.3:a:michael_dehaan:cobbler:1.4.3-4
Michael Dehaan » Cobbler » Version: 1.6.1

cpe:2.3:a:michael_dehaan:cobbler:1.6.1
Michael Dehaan » Cobbler » Version: 1.6.1-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.1-1
Michael Dehaan » Cobbler » Version: 1.6.2

cpe:2.3:a:michael_dehaan:cobbler:1.6.2
Michael Dehaan » Cobbler » Version: 1.6.2-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.2-1
Michael Dehaan » Cobbler » Version: 1.6.3

cpe:2.3:a:michael_dehaan:cobbler:1.6.3
Michael Dehaan » Cobbler » Version: 1.6.3-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.3-1
Michael Dehaan » Cobbler » Version: 1.6.4

cpe:2.3:a:michael_dehaan:cobbler:1.6.4
Michael Dehaan » Cobbler » Version: 1.6.4-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.4-1
Michael Dehaan » Cobbler » Version: 1.6.5

cpe:2.3:a:michael_dehaan:cobbler:1.6.5
Michael Dehaan » Cobbler » Version: 1.6.5-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.5-1
Michael Dehaan » Cobbler » Version: 1.6.6

cpe:2.3:a:michael_dehaan:cobbler:1.6.6
Michael Dehaan » Cobbler » Version: 1.6.6-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.6-1
Michael Dehaan » Cobbler » Version: 1.6.8

cpe:2.3:a:michael_dehaan:cobbler:1.6.8
Michael Dehaan » Cobbler » Version: 1.6.8-1

cpe:2.3:a:michael_dehaan:cobbler:1.6.8-1
Michael Dehaan » Cobbler » Version: 2.0.0

cpe:2.3:a:michael_dehaan:cobbler:2.0.0
Michael Dehaan » Cobbler » Version: 2.0.0-1

cpe:2.3:a:michael_dehaan:cobbler:2.0.0-1
Michael Dehaan » Cobbler » Version: 2.0.1

cpe:2.3:a:michael_dehaan:cobbler:2.0.1
Michael Dehaan » Cobbler » Version: 2.0.1-1

cpe:2.3:a:michael_dehaan:cobbler:2.0.1-1
Michael Dehaan » Cobbler » Version: 2.0.3

cpe:2.3:a:michael_dehaan:cobbler:2.0.3
Michael Dehaan » Cobbler » Version: 2.0.3.1

cpe:2.3:a:michael_dehaan:cobbler:2.0.3.1
Michael Dehaan » Cobbler » Version: 2.0.3.1-2

cpe:2.3:a:michael_dehaan:cobbler:2.0.3.1-2
Michael Dehaan » Cobbler » Version: 2.0.4-1

cpe:2.3:a:michael_dehaan:cobbler:2.0.4-1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2235

Products

Pricing

Contact Us