CVE-2007-3113

6 documents6 sources

Severity

6.8MEDIUM

EPSS

2.1%

top 15.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

THE Cacti Group Cacti

Timeline

PublishedJun 7

Latest updateMay 1

Description

Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service (CPU consumption) via a large value of the (1) graph_height or (2) graph_width parameter, different vectors than CVE-2007-3112.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 8.0 | Impact: 6.9

Affected Packages2 packages

▶Debiancacti< 0.8.6j-1.1+3

▶NVDthe_cacti_group/cacti0.8.6i

Patches

Patch: secunia.com ↗Patch: svn.cacti.net ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-36fx-rf6c-vc8x: Cacti 0↗2022-05-01

▶

CVEList

CVE-2007-3113: Cacti 0↗2007-06-07

▶

OSV

CVE-2007-3113: Cacti 0↗2007-06-07

▶

📋Vendor Advisories

Debian

CVE-2007-3113: cacti - Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to ...↗2007

▶

💬Community

Bugzilla

CVE-2007-3112, CVE-2007-3113: cacti DoS vulnerabilities↗2007-06-10

▶