{"id":"CVE-2021-40325","details":"Cobbler before 3.3.0 allows authorization bypass for modification of settings.","aliases":["GHSA-cr3f-r24j-3chw","PYSEC-2021-375"],"modified":"2026-05-16T04:01:44.984229560Z","published":"2021-10-04T06:15:07.367Z","related":["SUSE-RU-2021:3162-1","SUSE-SU-2021:3151-1","SUSE-SU-2021:3170-1"],"database_specific":{},"references":[{"type":"ADVISORY","url":"https://github.com/cobbler/cobbler/releases/tag/v3.3.0"},{"type":"FIX","url":"https://github.com/cobbler/cobbler/commit/d8f60bbf14a838c8c8a1dba98086b223e35fe70a"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}]}