CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-9605

A flaw was found in cobbler software component version 2.6.11-1. It suffers from an invalid parameter validation vulnerability, leading the arbitrary file reading. The flaw is triggered by navigating to a vulnerable URL via cobbler-web on a default installation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9605
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9605

Products affected by CVE-2016-9605

Cobbler Project » Cobbler » Version: 2.6.11-1

cpe:2.3:a:cobbler_project:cobbler:2.6.11-1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9605

Products

Pricing

Contact Us