CVE-2002-1478

5 documents5 sources
Severity
10.0CRITICAL
EPSS
0.6%
top 30.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
THE Cacti Group Cacti
Timeline
PublishedApr 22
Latest updateApr 30

Description

Cacti before 0.6.8 allows attackers to execute arbitrary commands via the "Data Input" option in console mode.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

Debiancacti< 0.6.8a-2+3
NVDthe_cacti_group/cacti10 versions+9

Patches

Patch: archives.neohapsis.comPatch: www.iss.netPatch: www.securityfocus.com

🔴Vulnerability Details

3
GHSA
GHSA-2v8j-4895-h2g9: Cacti before 02022-04-30
CVEList
CVE-2002-1478: Cacti before 02004-09-01
OSV
CVE-2002-1478: Cacti before 02003-04-22

📋Vendor Advisories

1
Debian
CVE-2002-1478: cacti - Cacti before 0.6.8 allows attackers to execute arbitrary commands via the "Data ...2002