What is the severity of CVE-2010-2544?

CVE-2010-2544 has been classified as a medium severity vulnerability due to its potential for cross-site scripting (XSS) attacks.

How do I fix CVE-2010-2544?

To fix CVE-2010-2544, upgrade to Cacti version 0.8.7g or later.

Which software versions are vulnerable to CVE-2010-2544?

CVE-2010-2544 affects Cacti versions prior to 0.8.7g, including versions 0.5 to 0.8.7f.

Can CVE-2010-2544 be exploited remotely?

Yes, CVE-2010-2544 can be exploited remotely by attackers to inject arbitrary web scripts or HTML.

What are the consequences of exploiting CVE-2010-2544?

Exploiting CVE-2010-2544 may allow attackers to execute malicious scripts in the context of the user's browser, potentially compromising user data.

Vulnerability/
CVE-2010-2544

medium

4.3

CWE

14/8/2008

23/8/2010

7/8/2024

CVE-2010-2544: XSS

First published: Thu Aug 14 2008(Updated: )

Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
debian/cacti		1.2.16+ds1-2+deb11u3 1.2.24+ds1-1+deb12u2 1.2.27+ds1-2
Cacti	=0.5
Cacti	=0.8.6k
Cacti	=0.8.6d
Cacti	=0.6.3
Cacti	<=0.8.7f
Cacti	=0.8.7
Cacti	=0.8.5a
Cacti	=0.8.3
Cacti	=0.6.8
Cacti	=0.8.2
Cacti	=0.8.5
Cacti	=0.6.6
Cacti	=0.8.7d
Cacti	=0.8.7b
Cacti	=0.8.7a
Cacti	=0.6.2
Cacti	=0.6.5
Cacti	=0.8.6f
Cacti	=0.8.6g
Cacti	=0.8.6j
Cacti	=0.8.7c
Cacti	=0.6.1
Cacti	=0.8
Cacti	=0.8.7e
Cacti	=0.8.6a
Cacti	=0.8.6i
Cacti	=0.8.6
Cacti	=0.6.8a
Cacti	=0.6.7
Cacti	=0.8.1
Cacti	=0.8.4
Cacti	=0.8.6c
Cacti	=0.6.4
Cacti	=0.8.6b
Cacti	=0.8.2a
Cacti	=0.8.3a
Cacti	=0.8.6h
Cacti	=0.6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-2544?
CVE-2010-2544 has been classified as a medium severity vulnerability due to its potential for cross-site scripting (XSS) attacks.
How do I fix CVE-2010-2544?
To fix CVE-2010-2544, upgrade to Cacti version 0.8.7g or later.
Which software versions are vulnerable to CVE-2010-2544?
CVE-2010-2544 affects Cacti versions prior to 0.8.7g, including versions 0.5 to 0.8.7f.
Can CVE-2010-2544 be exploited remotely?
Yes, CVE-2010-2544 can be exploited remotely by attackers to inject arbitrary web scripts or HTML.
What are the consequences of exploiting CVE-2010-2544?
Exploiting CVE-2010-2544 may allow attackers to execute malicious scripts in the context of the user's browser, potentially compromising user data.

agent/type
agent/first-publish-date
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
agent/weakness
agent/references
agent/severity
agent/author
agent/description
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2010-2544
agent/trending
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/debian
vendor/cacti
canonical/cacti
version/cacti/0.5
version/cacti/0.8.6k
version/cacti/0.8.6d
version/cacti/0.6.3
version/cacti/0.8.7f
version/cacti/0.8.7
version/cacti/0.8.5a
version/cacti/0.8.3
version/cacti/0.6.8
version/cacti/0.8.2
version/cacti/0.8.5
version/cacti/0.6.6
version/cacti/0.8.7d
version/cacti/0.8.7b
version/cacti/0.8.7a
version/cacti/0.6.2
version/cacti/0.6.5
version/cacti/0.8.6f
version/cacti/0.8.6g
version/cacti/0.8.6j
version/cacti/0.8.7c
version/cacti/0.6.1
version/cacti/0.8
version/cacti/0.8.7e
version/cacti/0.8.6a
version/cacti/0.8.6i
version/cacti/0.8.6
version/cacti/0.6.8a
version/cacti/0.6.7
version/cacti/0.8.1
version/cacti/0.8.4
version/cacti/0.8.6c
version/cacti/0.6.4
version/cacti/0.8.6b
version/cacti/0.8.2a
version/cacti/0.8.3a
version/cacti/0.8.6h
version/cacti/0.6