High severityNVD Advisory· Published Nov 19, 2019· Updated Aug 7, 2024
CVE-2011-4952
CVE-2011-4952
Description
cobbler: Web interface lacks CSRF protection when using Django framework
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
cobblerPyPI | < 2.6.0 | 2.6.0 |
Affected products
2- Range: 2011-09-28
Patches
Vulnerability mechanics
References
8- github.com/advisories/GHSA-9fqr-pqc9-f7pjghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2011-4952ghsaADVISORY
- www.openwall.com/lists/oss-security/2012/04/12/10ghsax_refsource_MISCWEB
- access.redhat.com/security/cve/cve-2011-4952ghsax_refsource_MISCWEB
- bugzilla.redhat.com/show_bug.cgighsax_refsource_MISCWEB
- github.com/cobbler/cobbler/commit/18eb1c06779b37d89dfb2962a08236dd1bab24a6ghsaWEB
- github.com/cobbler/cobbler/commit/4bee30b4086a8d845bea5d39d6f2cba1f4a396aaghsaWEB
- security-tracker.debian.org/tracker/CVE-2011-4952ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.