Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-2327
HistoryApr 23, 2014 - 3:55 p.m.

CVE-2014-2327

2014-04-2315:55:00
CWE-352
[email protected]
web.nvd.nist.gov
39
cve-2014-2327
csrf
cacti
vulnerability
authentication hijacking

8.7 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.8%

JSON

Cross-site request forgery (CSRF) vulnerability in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to hijack the authentication of users for unspecified commands, as demonstrated by requests that (1) modify binary files, (2) modify configurations, or (3) add arbitrary users.

Related

jvn 1
seebug 1
myhack58 1
debiancve 1
prion 1
ubuntucve 2
securityvulns 4
nessus 8
openvas 10
fedora 2
amazon 1
osv 1
debian 3
freebsd 1
gentoo 1
jvn
jvn
JVN#55076671: Cacti vulnerable to cross-site request forgery
2015-07-09 00:00:00
seebug
seebug
Cacti跨站请求δΌͺι€ ζΌζ΄ž
2014-03-27 00:00:00
myhack58
myhack58
Cacti cross-site request forgery Vulnerability, CVE-2 0 1 4-2 3 2 7-the vulnerability warning-the black bar safety net
2014-04-26 00:00:00
debiancve
debiancve
CVE-2014-2327
2014-04-23 15:55:00
prion
prion
Cross site request forgery (csrf)
2014-04-23 15:55:00
ubuntucve
ubuntucve
CVE-2014-2327
2014-04-23 00:00:00
CVE-2013-7464
2018-08-08 00:00:00
securityvulns
securityvulns
Deutsche Telekom CERT Advisory [DTC-A-20140324-001] vulnerabilities in cacti
2014-05-05 00:00:00
[SECURITY] [DSA 2970-1] cacti security update
2014-08-26 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-08-26 00:00:00
nessus
nessus
Fedora 19 : cacti-0.8.8b-5.fc19 (2014-4928)
2014-04-18 00:00:00
Amazon Linux AMI : cacti (ALAS-2014-347)
2014-10-12 00:00:00
Fedora 20 : cacti-0.8.8b-5.fc20 (2014-4892)
2014-04-18 00:00:00
openvas
openvas
Fedora Update for cacti FEDORA-2014-4892
2014-04-21 00:00:00
Fedora Update for cacti FEDORA-2014-4892
2014-04-21 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-347)
2015-09-08 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: cacti-0.8.8b-5.fc20
2014-04-17 06:03:35
[SECURITY] Fedora 19 Update: cacti-0.8.8b-5.fc19
2014-04-17 06:00:36
amazon
amazon
Medium: cacti
2014-06-03 14:59:00
osv
osv
cacti - security update
2014-06-29 00:00:00
debian
debian
[SECURITY] [DSA 2970-1] cacti security update
2014-06-29 17:58:03
cacti security update
2014-07-15 07:22:31
cacti security update
2014-07-15 07:36:29
freebsd
freebsd
cacti -- multiple security vulnerabilities
2014-11-23 00:00:00
gentoo
gentoo
Cacti: Multiple vulnerabilities
2015-09-24 00:00:00

8.7 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.8%

JSON
Related for CVE-2014-2327
jvn1seebug1myhack581debiancve1prion1ubuntucve2securityvulns4nessus8openvas10fedora2amazon1osv1debian3freebsd1gentoo1