CVE-2014-3225

Published May 14th, 2014

View on NVD ↗

CVSS v3

N/A

CVSS v2

MEDIUM

Affected

PROJECT

Description

Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.

cobbler/cobbler

Cobbler is a versatile Linux deployment server

GitHub

2.76K