Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.4.1-0ubuntu2+esm1", "binary_name": "cobbler" }, { "binary_version": "2.4.1-0ubuntu2+esm1", "binary_name": "cobbler-common" }, { "binary_version": "2.4.1-0ubuntu2+esm1", "binary_name": "cobbler-web" }, { "binary_version": "2.4.1-0ubuntu2+esm1", "binary_name": "koan" }, { "binary_version": "2.4.1-0ubuntu2+esm1", "binary_name": "python-cobbler" }, { "binary_version": "2.4.1-0ubuntu2+esm1", "binary_name": "python-koan" } ] }