Authenticated SQL injection vulnerability in graphs.php in Cacti
CVE-2023-39359

8.8HIGH

Key Information:

Vendor: Cacti
Status: Cacti
Vendor: CVE Published:; 5 September 2023

What is CVE-2023-39359?

An authenticated SQL injection vulnerability has been identified in Cacti's operational monitoring framework. This issue affects the graphs.php file where improper handling of the site_id parameter could allow authenticated users to manipulate SQL queries, leading to potential privilege escalation and remote code execution. It is critical for users to upgrade to version 1.2.25 or later as there are no known workarounds available to mitigate this vulnerability.

Affected Version(s)

cacti < 1.2.25

References

https://github.com/Cacti/cacti/security/advisories/GHSA-q...

x_refsource_CONFIRM

https://lists.fedoraproject.org/archives/list/package-ann...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 5, 2023
Vulnerability Reserved
Jul 28, 2023