CVE-2018-10931

Advisory

It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

Affected package

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

• https://github.com/advisories/GHSA-8787-63px-3m23
• https://nvd.nist.gov/vuln/detail/CVE-2018-10931
• https://github.com/cobbler/cobbler/issues/1916
• https://github.com/cobbler/cobbler/pull/1921
• https://github.com/cobbler/cobbler/commit/1b91a3d3ac87c31d9dac2307513feb2aa49620a6
• https://access.redhat.com/errata/RHSA-2018:2372
• https://access.redhat.com/security/cve/CVE-2018-10931
• https://bugzilla.redhat.com/show_bug.cgi?id=1613861
• https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10931
• https://github.com/cobbler/cobbler
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5P5
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMW
• https://lists.fedoraproject.org/archives/list/[email protected]/message/5P5Q4
• https://lists.fedoraproject.org/archives/list/[email protected]/message/CMWK5
• https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10931
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5P5Q4ACIVZ5D4KSUDLGRTOKGGB4U42SD/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMWK5KCCZXOGOYNR2H6BWDSABTQ5NYJA/