CVE Alert: CVE-2024-43363

October 8, 2024
image 1

Vulnerability Summary: CVE-2024-43363

Cacti is an open source performance and fault management framework. An admin user can create a device with a malicious hostname containing php code and repeat the installation process (completing only step 5 of the installation process is enough, no need to complete the steps before or after it) to use a php file as the cacti log file. After having the malicious hostname end up in the logs (log poisoning), one can simply go to the log file url to execute commands to achieve RCE. This issue has been addressed in version 1.2.28 and all users are advised to upgrade. There are no known workarounds for this vulnerability.

Affected Endpoints:

No affected endpoints listed.

Published Date:

10/7/2024, 9:15:15 PM

🔥 CVSS Score:

CVSS v3 Score: 7.2 (High)

Exploit Status:

Not Exploited

References:

Recommended Action:

No proposed action available. Please refer to vendor documentation for updates.

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

You may have missed

image 1

CVE Alert: CVE-2024-43365

October 8, 2024
image 1

CVE Alert: CVE-2024-45051

October 8, 2024
image 1

CVE Alert: CVE-2024-43362

October 8, 2024
image 1

CVE Alert: CVE-2024-43363

October 8, 2024
image 1

CVE Alert: CVE-2024-43789

October 8, 2024