High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-20	CVE-2021-45083	Incorrect Default Permissions vulnerability in multiple products An issue was discovered in Cobbler before 3.3.1. local low complexity cobbler-project fedoraproject CWE-276	7.1
2022-02-19	CVE-2021-45082	Command Injection vulnerability in multiple products An issue was discovered in Cobbler before 3.3.1. local low complexity cobbler-project suse opensuse fedoraproject CWE-77	7.8
2021-10-04	CVE-2021-40324	Unrestricted Upload of File with Dangerous Type vulnerability in Cobbler Project Cobbler Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data. network low complexity cobbler-project CWE-434	7.5
2021-10-04	CVE-2021-40325	Unspecified vulnerability in Cobbler Project Cobbler Cobbler before 3.3.0 allows authorization bypass for modification of settings. network low complexity cobbler-project	7.5