Cobbler version up to 2.8.2 is vulnerable to a command injection vulnerability in the "add repo" component resulting in arbitrary code execution as root user.
"https://github.com/pypa/advisory-database/blob/main/vulns/cobbler/PYSEC-2026-314.yaml"
"<= 2.8.2"