Security Advisory

CVE-2011-4953

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-10-27 01:00:00

Last updated 2024-08-07 00:23:38

Assigner redhat

State PUBLISHED

Description

The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the yaml.load function instead of the yaml.safe_load function, as demonstrated using Puppet.

← Browse all CVEs View on cve.org ↗