CVE-2023-49085

2023-12-2217:15:07

Debian Security Bug Tracker

security-tracker.debian.org

cacti

operational monitoring

pollers.php

sql code execution

unauthorized access

patch absence

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

45.7%

JSON

Cacti provides an operational monitoring and fault management framework. In versions 1.2.25 and prior, it is possible to execute arbitrary SQL code through the pollers.php script. An authorized user may be able to execute arbitrary SQL code. The vulnerable component is the pollers.php. Impact of the vulnerability - arbitrary SQL code execution. As of time of publication, a patch does not appear to exist.

OSVersionArchitecturePackageVersionFilename
Debian12allcacti< 1.2.24+ds1-1+deb12u2cacti_1.2.24+ds1-1+deb12u2_all.deb
Debian11allcacti< 1.2.16+ds1-2+deb11u3cacti_1.2.16+ds1-2+deb11u3_all.deb
Debian999allcacti< 1.2.26+ds1-1cacti_1.2.26+ds1-1_all.deb
Debian13allcacti< 1.2.26+ds1-1cacti_1.2.26+ds1-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	cacti	< 1.2.24+ds1-1+deb12u2	cacti_1.2.24+ds1-1+deb12u2_all.deb
Debian	11	all	cacti	< 1.2.16+ds1-2+deb11u3	cacti_1.2.16+ds1-2+deb11u3_all.deb
Debian	999	all	cacti	< 1.2.26+ds1-1	cacti_1.2.26+ds1-1_all.deb
Debian	13	all	cacti	< 1.2.26+ds1-1	cacti_1.2.26+ds1-1_all.deb