2021-10-04 05:37:50
mitre
PUBLISHED
Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.