CVE-2021-45081

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cobbler versions prior to 3.3.2

Description An issue was discovered where routines in several files use the HTTP protocol instead of the more secure HTTPS.

Recommendations For Cobbler versions prior to 3.3.2, consider updating to a version that uses HTTPS instead of HTTP to enhance security. As a temporary workaround, consider restricting access to the affected routines until a patch is available.

Fix

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319

Related Identifiers

CVE-2021-45081

OESA-2025-1467

OESA-2025-1468

OESA-2025-1469

OESA-2025-1527

Affected Products

Cobbler

CVE-2021-45081

Weakness Enumeration

Related Identifiers

Affected Products

References · 22