Lucene search
Copyright (C) 2023 Greenbone AGOPENVAS:1361412562310885171HistoryNov 05, 2023 - 12:00 a.m.
Fedora: Security Advisory for cacti (FEDORA-2023-248dff7cbe)
2023-11-0500:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
11
fedora
security advisory
cacti
fedora-2023-248dff7cbe
rrdtool
mysql
php
fedora 39
package update
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
Low
EPSS
0.06
Percentile
93.6%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.885171");
script_version("2024-09-05T12:18:34+0000");
script_cve_id("CVE-2023-39512", "CVE-2023-39514", "CVE-2023-39513", "CVE-2023-39515", "CVE-2023-39359", "CVE-2023-39360", "CVE-2023-39361", "CVE-2023-39366", "CVE-2023-39510", "CVE-2023-39357", "CVE-2023-39358", "CVE-2023-39364", "CVE-2023-39365", "CVE-2023-30534", "CVE-2023-31132", "CVE-2023-39362", "CVE-2023-39516", "CVE-2023-39511");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2024-09-05 12:18:34 +0000 (Thu, 05 Sep 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-09-08 17:42:00 +0000 (Fri, 08 Sep 2023)");
script_tag(name:"creation_date", value:"2023-11-05 02:19:56 +0000 (Sun, 05 Nov 2023)");
script_name("Fedora: Security Advisory for cacti (FEDORA-2023-248dff7cbe)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("Fedora Local Security Checks");
script_xref(name:"Advisory-ID", value:"FEDORA-2023-248dff7cbe");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LS442P4OBCKU7MQK5NNUNUQSVKMYNHEM");
script_tag(name:"summary", value:"The remote host is missing an update for the 'cacti'
package(s) announced via the FEDORA-2023-248dff7cbe advisory.
Note: This VT has been deprecated as a duplicate.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Cacti is a complete frontend to RRDTool. It stores all of the
necessary information to create graphs and populate them with
data in a MySQL database. The frontend is completely PHP
driven.");
script_tag(name:"affected", value:"'cacti' package(s) on Fedora 39.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);
Related
nessus
nessus
Fedora 38 : cacti / cacti-spine (2023-6335ea9c0c)
2023-10-13 00:00:00
openSUSE 15 Security Update : cacti, cacti-spine (openSUSE-SU-2023:0275-1)
2023-09-27 00:00:00
Fedora 39 : cacti / cacti-spine (2023-248dff7cbe)
2023-11-07 00:00:00
openvas
openvas
Fedora: Security Advisory for cacti-spine (FEDORA-2023-6335ea9c0c)
2023-10-16 00:00:00
Fedora: Security Advisory for cacti-spine (FEDORA-2023-06a2a6e03c)
2023-10-16 00:00:00
Fedora: Security Advisory for cacti (FEDORA-2023-6335ea9c0c)
2023-10-16 00:00:00
osv
osv
cacti-1.2.25-2.1 on GA media
2024-06-15 00:00:00
cacti - security update
2023-11-08 00:00:00
cacti - security update
2024-03-18 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: cacti-1.2.25-1.fc38
2023-10-13 01:53:22
[SECURITY] Fedora 37 Update: cacti-1.2.25-1.fc37
2023-10-13 01:33:54
[SECURITY] Fedora 39 Update: cacti-1.2.25-1.fc39
2023-11-03 18:53:21
debian
debian
[SECURITY] [DSA 5550-1] cacti security update
2023-11-08 22:40:46
[SECURITY] [DLA 3765-1] cacti security update
2024-03-18 18:26:19
amazon
amazon
Important: cacti
2023-10-12 15:48:00
Important: cacti
2023-09-27 22:15:00
veracode
veracode
Open Redirect
2023-09-12 22:32:10
SQL Injection
2023-09-12 22:31:32
Cross-site Scripting (XSS)
2023-09-12 15:35:30
nvd
nvd
prion
prion
Cross site scripting
2023-09-05 21:15:00
Privilege escalation
2023-09-05 22:15:00
Design/Logic Flaw
2023-09-05 22:15:00
ubuntucve
ubuntucve
vulnrichment
vulnrichment
CVE-2023-31132 Cacti Privilege Escalation
2023-09-05 21:19:22
debiancve
debiancve
cvelist
cvelist
CVE-2023-39516 Stored Cross-Site-Scripting on data_sources.php debug html-block in Cacti
2023-09-05 21:09:28
CVE-2023-39511 Stored Cross-Site-Scripting on reports_admin.php device name in Cacti
2023-09-06 17:40:13
CVE-2023-31132 Cacti Privilege Escalation
2023-09-05 21:19:22
cve
cve
alpinelinux
alpinelinux
ubuntu
ubuntu
Cacti vulnerability
2024-04-02 00:00:00
nuclei
nuclei
Cacti 1.2.24 - SQL Injection
2023-09-06 11:39:51
zdi
zdi
Cacti link Local File Inclusion Remote Code Execution Vulnerability
2023-10-04 00:00:00
Cacti graph_view SQL Injection Authentication Bypass Vulnerability
2023-10-04 00:00:00
exploitdb
exploitdb
Cacti 1.2.24 - Authenticated command injection when using SNMP options
2023-10-09 00:00:00
githubexploit
githubexploit
Exploit for OS Command Injection in Cacti
2023-07-03 09:43:21
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
Low
EPSS
0.06
Percentile
93.6%
Related for OPENVAS:1361412562310885171