Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:1 a.m.2 views

SUSE CVE-2020-7237

Cacti 1.2.8 allows Remote Code Execution by privileged users via shell metacharacters in the Performance Boost Debug Log field of pollerautomation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance...

8.8CVSS7.2AI score0.36824EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2020/03/02 12:0 a.m.47 views

openSUSE Security Update : cacti / cacti-spine (openSUSE-2020-272)

This update for cacti, cacti-spine fixes the following issues : cacti-spine was updated to version 1.2.9. Security issues fixed : - CVE-2009-4112: Fixed a privilege escalation bsc1122535. - CVE-2018-20723: Fixed a cross-site scripting XSS vulnerability bsc1122245. - CVE-2018-20724: Fixed a...

9CVSS6.8AI score0.36824EPSS
Exploits9References23
OSV
OSV
added 2020/01/20 5:15 a.m.22 views

CVE-2020-7237

Cacti 1.2.8 allows Remote Code Execution by privileged users via shell metacharacters in the Performance Boost Debug Log field of pollerautomation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance...

8.8CVSS7.3AI score0.36824EPSS
Exploits1References9
NVD
NVD
added 2020/01/20 5:15 a.m.18 views

CVE-2020-7237

Cacti 1.2.8 allows Remote Code Execution by privileged users via shell metacharacters in the Performance Boost Debug Log field of pollerautomation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance...

9CVSS8.8AI score0.36824EPSS
Exploits1References9
OSV
OSV
added 2020/01/20 5:15 a.m.2 views

UBUNTU-CVE-2020-7237

Cacti 1.2.8 allows Remote Code Execution by privileged users via shell metacharacters in the Performance Boost Debug Log field of pollerautomation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance...

8.8CVSS7AI score0.36824EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2020/01/20 4:6 a.m.33 views

CVE-2020-7237

Cacti 1.2.8 allows Remote Code Execution by privileged users via shell metacharacters in the Performance Boost Debug Log field of pollerautomation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance...

9CVSS6.2AI score0.36824EPSS
Exploits1
CNVD
CNVD
added 2020/01/20 12:0 a.m.2 views

Cacti Remote Code Execution Vulnerability (CNVD-2020-03255)

Cacti is a set of open source network traffic monitoring and analysis tools from the Cacti team. The tool through snmpget to get the data , using RRDtool drawing graphs to analyze , and provide data and user management features . A security vulnerability exists in Cacti version 1.2.8. An attacker...

9CVSS7.7AI score0.36824EPSS
Exploits1References1
Rows per page
Query Builder