SQL Injection (SQLi)

2023-12-2719:38:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

sql injection

cacti:sid

managers.php

snmp notification

vulnerability

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

cacti:sid is a vulnerable of SQL Injection (SQLi). The vulnerability due to receiving feature of SNMP Notification in the file ‘managers.php’. It leads to SQL Injection by allows the authenticated attacker with the “Settings/Utilities” permission can send a crafted HTTP GET request to the endpoint ‘/cacti/managers.php’ with an SQLi payload in the ‘selected_graphs_array’ HTTP GET parameter.

CPENameOperatorVersion
cacti:sideq1.2.16+ds1-2
cacti:sideq1.2.15+ds1-2
cacti:3.18eq1.2.24-r1
cacti:edgeeq1.2.24-r1
cacti:edgeeq1.2.22-r1
cacti:edgeeq1.2.17-r0
cacti:edgeeq1.2.10-r1
cacti:edgeeq1.2.11-r0
cacti:edgeeq1.2.16-r0
cacti:edgeeq1.2.21-r0

Name	Operator	Version
cacti:sid	eq	1.2.16+ds1-2
cacti:sid	eq	1.2.15+ds1-2
cacti:3.18	eq	1.2.24-r1
cacti:edge	eq	1.2.24-r1
cacti:edge	eq	1.2.22-r1
cacti:edge	eq	1.2.17-r0
cacti:edge	eq	1.2.10-r1
cacti:edge	eq	1.2.11-r0
cacti:edge	eq	1.2.16-r0
cacti:edge	eq	1.2.21-r0