The vulnerability of the functions ss_net_snmp_disk_io() and ss_net_snmp_disk_bytes() in the Cacti network monitoring software allows a attacker to execute arbitrary code.

The vulnerability of the ssnetsnmpdiskio and ssnetsnmpdiskbytes functions of the Cacti network monitoring software is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute...