Launchpad.net

CVE 2021-40324

Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data.

See the CVE page on Mitre.org for more details.