CVE-2010-2235

high

Published 2010-12-09 · Modified 2024-11-28

CVSS v3

—

CVSS v2

8.5

VIR risk

8.5

Description

Cobbler is vulnerable to code injection

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://people.fedoraproject.org/~shenson/cobbler/cobbler-2.0.8.tar.gz

Package impact

Ecosystem	Package	Vulnerable	Fixed
PyPI	cobbler	`<2.0.7`	`2.0.7`

Application impact

Vendor	Product	Versions
michael_dehaan	cobbler	`{"endIncluding":"2.0.4"}`
michael_dehaan	cobbler	`0.1.1.7`
michael_dehaan	cobbler	`0.2.1`
michael_dehaan	cobbler	`0.2.2`
michael_dehaan	cobbler	`0.2.3`
michael_dehaan	cobbler	`0.2.5`
michael_dehaan	cobbler	`0.2.7`
michael_dehaan	cobbler	`0.2.8`
michael_dehaan	cobbler	`0.2.9`
michael_dehaan	cobbler	`0.3.0`
michael_dehaan	cobbler	`0.3.1`
michael_dehaan	cobbler	`0.3.3`
michael_dehaan	cobbler	`0.3.4`
michael_dehaan	cobbler	`0.3.5`
michael_dehaan	cobbler	`0.3.6`
michael_dehaan	cobbler	`0.3.7`
michael_dehaan	cobbler	`0.3.9`
michael_dehaan	cobbler	`0.4.0`
michael_dehaan	cobbler	`0.4.2`
michael_dehaan	cobbler	`0.4.3`
michael_dehaan	cobbler	`0.4.5`
michael_dehaan	cobbler	`0.4.6`
michael_dehaan	cobbler	`0.4.7`
michael_dehaan	cobbler	`0.4.8`
michael_dehaan	cobbler	`0.5.0`
michael_dehaan	cobbler	`0.6.0`
michael_dehaan	cobbler	`0.6.1`
michael_dehaan	cobbler	`0.6.3`
michael_dehaan	cobbler	`0.6.4`
michael_dehaan	cobbler	`0.6.5`
michael_dehaan	cobbler	`0.8.1`
michael_dehaan	cobbler	`0.8.3`
michael_dehaan	cobbler	`1.0.0`
michael_dehaan	cobbler	`1.0.2`
michael_dehaan	cobbler	`1.0.2-1`
michael_dehaan	cobbler	`1.0.3-1`
michael_dehaan	cobbler	`1.2.0`
michael_dehaan	cobbler	`1.2.2`
michael_dehaan	cobbler	`1.2.3`
michael_dehaan	cobbler	`1.2.5`
michael_dehaan	cobbler	`1.2.6`
michael_dehaan	cobbler	`1.2.7`
michael_dehaan	cobbler	`1.2.8`
michael_dehaan	cobbler	`1.2.8-1`
michael_dehaan	cobbler	`1.2.9`
michael_dehaan	cobbler	`1.2.9-1`
michael_dehaan	cobbler	`1.3.1`
michael_dehaan	cobbler	`1.3.1-1`
michael_dehaan	cobbler	`1.3.3`
michael_dehaan	cobbler	`1.3.3-1`
michael_dehaan	cobbler	`1.3.4`
michael_dehaan	cobbler	`1.3.4-1`
michael_dehaan	cobbler	`1.4.0`
michael_dehaan	cobbler	`1.4.0-2`
michael_dehaan	cobbler	`1.4.1`
michael_dehaan	cobbler	`1.4.1-1`
michael_dehaan	cobbler	`1.4.2`
michael_dehaan	cobbler	`1.4.2-1`
michael_dehaan	cobbler	`1.4.3`
michael_dehaan	cobbler	`1.4.3-4`
michael_dehaan	cobbler	`1.6.1`
michael_dehaan	cobbler	`1.6.1-1`
michael_dehaan	cobbler	`1.6.2`
michael_dehaan	cobbler	`1.6.2-1`
michael_dehaan	cobbler	`1.6.3`
michael_dehaan	cobbler	`1.6.3-1`
michael_dehaan	cobbler	`1.6.4`
michael_dehaan	cobbler	`1.6.4-1`
michael_dehaan	cobbler	`1.6.5`
michael_dehaan	cobbler	`1.6.5-1`
michael_dehaan	cobbler	`1.6.6`
michael_dehaan	cobbler	`1.6.6-1`
michael_dehaan	cobbler	`1.6.8`
michael_dehaan	cobbler	`1.6.8-1`
michael_dehaan	cobbler	`2.0.0`
michael_dehaan	cobbler	`2.0.0-1`
michael_dehaan	cobbler	`2.0.1`
michael_dehaan	cobbler	`2.0.1-1`
michael_dehaan	cobbler	`2.0.3`
michael_dehaan	cobbler	`2.0.3.1`
michael_dehaan	cobbler	`2.0.3.1-2`
michael_dehaan	cobbler	`2.0.4-1`

References

CWEs

CWE-94

Verify integrity in audit chain (admin only). AS-IS.