all InfoSec news
USN-6475-1: Cobbler vulnerabilities
Nov. 13, 2023, 3:04 p.m. |
Ubuntu security notices ubuntu.com
could result in an absolute path traversal. An attacker could possibly
use this issue to read arbitrary files. (CVE-2014-3225)
It was discovered that Cobbler did not properly handle user input, which
could result in command injection. An attacker could possibly use this
issue to execute arbitrary code with high privileges.
(CVE-2017-1000469, CVE-2021-45082)
It was discovered that Cobbler did not properly hide private functions in
a class. A remote …
absolute arbitrary files attacker command command injection cve files injection input issue path path traversal result usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6804-1: GNU C Library vulnerabilities
1 day, 15 hours ago |
ubuntu.com
USN-6803-1: FFmpeg vulnerabilities
2 days, 13 hours ago |
ubuntu.com
USN-6802-1: PostgreSQL vulnerability
2 days, 17 hours ago |
ubuntu.com
USN-6801-1: PyMySQL vulnerability
2 days, 17 hours ago |
ubuntu.com
USN-6800-1: browserify-sign vulnerability
2 days, 19 hours ago |
ubuntu.com
USN-6798-1: GStreamer Base Plugins vulnerability
3 days, 14 hours ago |
ubuntu.com
USN-6796-1: TPM2 Software Stack vulnerabilities
3 days, 15 hours ago |
ubuntu.com
USN-6797-1: Intel Microcode vulnerabilities
3 days, 22 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC