Lucene search
Ubuntu.comUB:CVE-2015-8369HistoryDec 17, 2015 - 12:00 a.m.
CVE-2015-8369
2015-12-1700:00:00
ubuntu.com
ubuntu.com
12
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.2%
SQL injection vulnerability in include/top_graph_header.php in Cacti 0.8.8f
and earlier allows remote attackers to execute arbitrary SQL commands via
the rra_id parameter in a properties action to graph.php.
Bugs
Notes
| Author | Note |
|---|---|
| seth-arnold | $rra_id is string-interpolated in many cases; this may not be an isolated occurance of this bug |
Related
seebug
seebug
Cacti SQL注入漏洞(CNVD-2015-08486)
2015-12-30 00:00:00
debiancve
debiancve
CVE-2015-8369
2015-12-17 19:59:00
debian
debian
[SECURITY] [DLA 374-2] cacti regression update
2015-12-30 22:24:17
[SECURITY] [DSA 3423-1] cacti security update
2015-12-16 20:09:42
[SECURITY] [DSA 3423-1] cacti security update
2015-12-16 20:09:42
zdt
zdt
Cacti 0.8.8f SQL Injection Vulnerability
2015-12-10 00:00:00
cve
cve
CVE-2015-8369
2015-12-17 19:59:00
nessus
nessus
Debian DLA-374-3 : cacti regression update
2015-12-29 00:00:00
Debian DSA-3423-1 : cacti - security update
2015-12-17 00:00:00
packetstorm
packetstorm
Cacti 0.8.8f SQL Injection
2015-12-09 00:00:00
freebsd
freebsd
cacti -- SQL injection vulnerabilities
2015-12-05 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3423-1)
2015-12-15 00:00:00
Debian Security Advisory DSA 3423-1 (cacti - security update)
2015-12-16 00:00:00
Debian: Security Advisory (DLA-374)
2023-03-08 00:00:00
prion
prion
Sql injection
2015-12-17 19:59:00
osv
osv
cacti - security update
2015-12-26 00:00:00
archlinux
archlinux
cacti: sql injection
2016-02-28 00:00:00
mageia
mageia
Updated cacti packages fix security vulnerability
2016-01-20 20:53:26
gentoo
gentoo
Cacti: Multiple vulnerabilities
2016-07-16 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.2%
Related for UB:CVE-2015-8369