Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2002-1478
cacti
arbitrary command execution
cve-2002-1478
security vulnerability
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
High
0.016 Low
EPSS
Percentile
87.7%
Cacti before 0.6.8 allows attackers to execute arbitrary commands via the “Data Input” option in console mode.
Affected configurations
Node
the_cacti_groupcactiMatch0.5
ORthe_cacti_groupcactiMatch0.6
ORthe_cacti_groupcactiMatch0.6.1
ORthe_cacti_groupcactiMatch0.6.2
ORthe_cacti_groupcactiMatch0.6.3
ORthe_cacti_groupcactiMatch0.6.4
ORthe_cacti_groupcactiMatch0.6.5
ORthe_cacti_groupcactiMatch0.6.6
ORthe_cacti_groupcactiMatch0.6.7
ORthe_cacti_groupcactiMatch0.6.8
Related
nvd
nvd
CVE-2002-1478
2003-04-22 04:00:00
debiancve
debiancve
CVE-2002-1478
2004-09-01 04:00:00
cvelist
cvelist
CVE-2002-1478
2004-09-01 04:00:00
osv
osv
cacti - arbitrary code execution
2002-09-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-164)
2008-01-17 00:00:00
Debian Security Advisory DSA 164-1 (cacti)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-164-1 : cacti - arbitrary code execution
2004-09-29 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
High
0.016 Low
EPSS
Percentile
87.7%
Related for CVE-2002-1478