Lucene search
K

13 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.3 views

SUSE CVE-2019-17357

Cacti through 1.2.7 is affected by a graphs.php?templateid= SQL injection vulnerability affecting how template identifiers are handled when a string and id composite value are used to identify the template type and id. An authenticated attacker can exploit this to extract data from the database, ...

6.5CVSS6.3AI score0.35041EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2020/04/29 12:0 a.m.44 views

openSUSE Security Update : cacti / cacti-spine (openSUSE-2020-558)

This update for cacti, cacti-spine to version 1.2.11 fixes the following issues : This update is fixing multiple vulnerabilities and adding bug fixes. For more details consult the changes file. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

9.3CVSS6AI score0.73779EPSS
Exploits33References23
OpenVAS
OpenVAS
added 2020/04/28 12:0 a.m.26 views

openSUSE: Security Advisory for cacti, (openSUSE-SU-2020:0558-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS7AI score0.73779EPSS
Exploits33References2
OpenVAS
OpenVAS
added 2020/03/17 12:0 a.m.31 views

Fedora: Security Advisory for cacti (FEDORA-2020-d6a9e27bb1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS7.2AI score0.36824EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/03/10 12:0 a.m.85 views

Fedora: Security Advisory for cacti (FEDORA-2020-552e4e7879)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS7.2AI score0.36824EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/03/02 12:0 a.m.31 views

openSUSE: Security Advisory for cacti, (openSUSE-SU-2020:0272-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS6.8AI score0.36824EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2020/02/19 12:0 a.m.36 views

Fedora: Security Advisory for cacti (FEDORA-2020-90f1c8229e)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS6.7AI score0.36824EPSS
Exploits3References2
CVE
CVE
added 2020/01/21 6:35 p.m.190 views

CVE-2019-17357

CVE-2019-17357 affects Cacti up to 1.2.7 via a graphs.php?template_id= SQL injection vulnerability in how template identifiers are handled. Exploitation could allow data extraction (authenticated) or CSRF-based unauthenticated access. Public listings in connected docs confirm this CVE was address...

6.5CVSS7.5AI score0.35041EPSS
Exploits0References8Affected Software1
OpenVAS
OpenVAS
added 2020/01/21 12:0 a.m.54 views

Debian: Security Advisory (DSA-4604-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.7AI score0.35041EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/01/21 12:0 a.m.46 views

Debian DSA-4604-1 : cacti - security update

Multiple issues have been found in cacti, a server monitoring system, potentially resulting in SQL code execution or information disclosure by authenticated users. - CVE-2019-16723 Authenticated users may bypass authorization checks for viewing a graph by submitting requests with modified...

8.1CVSS7.2AI score0.35041EPSS
Exploits2References14
Debian
Debian
added 2020/01/19 9:49 p.m.140 views

[SECURITY] [DSA 4604-1] cacti security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4604-1 [email protected] https://www.debian.org/security/ Hugo Lefeuvre January 19, 2020 https://www.debian.org/security/faq -...

8.1CVSS7.9AI score0.35041EPSS
Exploits2
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.27 views

Fedora Update for cacti FEDORA-2019-362f0e9710

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.4AI score0.35041EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/01/07 12:0 a.m.63 views

FreeBSD : cacti -- multiple vulnerabilities (86224a04-26de-11ea-97f2-001a8c5c04b6)

The cacti developers reports : When viewing graphs, some input variables are not properly checked SQL injection possible. Multiple instances of lib/functions.php are affected by unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influenc...

8.1CVSS6.3AI score0.35041EPSS
Exploits1References5
Rows per page
Query Builder