Lucene search
HistoryAug 29, 2013 - 12:07 p.m.
CVE-2013-5588
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
62.3%
Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the step parameter to install/index.php or (2) the id parameter to cacti/host.php.
Affected configurations
Node
cacticactiRange≤0.8.8b
ORcacticactiMatch0.8
ORcacticactiMatch0.8.1
ORcacticactiMatch0.8.2
ORcacticactiMatch0.8.2a
ORcacticactiMatch0.8.3
ORcacticactiMatch0.8.3a
ORcacticactiMatch0.8.4
ORcacticactiMatch0.8.5
ORcacticactiMatch0.8.5a
ORcacticactiMatch0.8.6
ORcacticactiMatch0.8.6a
ORcacticactiMatch0.8.6b
ORcacticactiMatch0.8.6c
ORcacticactiMatch0.8.6d
ORcacticactiMatch0.8.6e
ORcacticactiMatch0.8.6f
ORcacticactiMatch0.8.6g
ORcacticactiMatch0.8.6h
ORcacticactiMatch0.8.6i
ORcacticactiMatch0.8.6j
ORcacticactiMatch0.8.6k
ORcacticactiMatch0.8.7
ORcacticactiMatch0.8.7a
ORcacticactiMatch0.8.7b
ORcacticactiMatch0.8.7c
ORcacticactiMatch0.8.7d
ORcacticactiMatch0.8.7e
ORcacticactiMatch0.8.7f
ORcacticactiMatch0.8.7g
ORcacticactiMatch0.8.7h
ORcacticactiMatch0.8.7i
ORcacticactiMatch0.8.8
ORcacticactiMatch0.8.8a
Node
opensuseopensuseMatch13.1
ORopensuseopensuseMatch13.2
Related
debiancve
debiancve
CVE-2013-5588
2013-08-29 12:07:56
ubuntucve
ubuntucve
CVE-2013-5588
2013-08-29 00:00:00
cve
cve
CVE-2013-5588
2013-08-29 12:07:56
prion
prion
Cross site scripting
2013-08-29 12:07:00
cvelist
cvelist
CVE-2013-5588
2013-08-29 10:00:00
nessus
nessus
Debian DSA-2747-1 : cacti - several vulnerabilities
2013-09-02 00:00:00
Fedora 18 : cacti-0.8.8b-2.fc18 (2013-15444)
2013-09-06 00:00:00
Fedora 19 : cacti-0.8.8b-2.fc19 (2013-15466)
2013-09-06 00:00:00
openvas
openvas
Fedora Update for cacti FEDORA-2013-15466
2013-09-12 00:00:00
Debian Security Advisory DSA 2747-1 (cacti - several vulnerabilities)
2013-08-31 00:00:00
Debian: Security Advisory (DSA-2747-1)
2013-08-30 00:00:00
osv
osv
cacti - several
2013-08-31 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: cacti-0.8.8b-2.fc18
2013-09-06 05:17:39
[SECURITY] Fedora 19 Update: cacti-0.8.8b-2.fc19
2013-09-06 05:23:17
[SECURITY] Fedora 19 Update: cacti-0.8.8b-7.fc19
2014-07-08 01:02:08
debian
debian
[SECURITY] [DSA 2747-1] cacti security update
2013-08-31 18:11:20
securityvulns
securityvulns
[SECURITY] [DSA 2747-1] cacti security update
2013-09-09 00:00:00
freebsd
freebsd
cacti -- multiple security vulnerabilities
2014-11-23 00:00:00
amazon
amazon
Medium: cacti
2016-03-24 12:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
62.3%
Related for NVD:CVE-2013-5588