CVE-2021-40324

CVSS v4.0

8.7

High

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Cobbler versions prior to 3.3.0

Description The issue allows arbitrary file write operations via upload log data.

Recommendations For versions prior to 3.3.0, update to version 3.3.0 or later to resolve the issue.

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2021-40324

GHSA-4CFR-GJFX-FJ3X

OESA-2025-1467

OESA-2025-1468

OESA-2025-1469

OESA-2025-1527

OPENSUSE-SU-2022_0062-1

PYSEC-2021-374

SUSE-RU-2021:3162-1

SUSE-SU-2021:3151-1

SUSE-SU-2021:3170-1

USN-6475-1

Cobbler

Suse

Ubuntu