NuytsTech Security

CVE-2014-3225

by ·

Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.

Date published : 2014-05-13

http://www.securityfocus.com/bid/67277

http://www.securityfocus.com/archive/1/532094/100/0/threaded

Tags: