Cobbler Project: Security Vulnerabilities
The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the yaml.load function instead of the yaml.safe_load function, as demonstrated using Puppet.
CVSS Score
6.8
EPSS Score
0.007
Published
2014-10-27
Page 2