- Vulnerability/
- ZDI-23-1499
ZDI-23-1499: Cacti link Local File Inclusion Remote Code Execution Vulnerability
First published: Wed Oct 04 2023(Updated: )
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cacti. Authentication is required to exploit this vulnerability. The specific flaw exists within the link endpoint. The issue results from the lack of proper validation of data retrieved from the database prior to passing it to a PHP include function. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the service account.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cacti Cacti |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Cacti vulnerability?
The vulnerability ID for this Cacti vulnerability is ZDI-23-1499.
What is the severity of vulnerability ZDI-23-1499?
The severity of vulnerability ZDI-23-1499 is medium.
How does this vulnerability affect Cacti?
This vulnerability affects Cacti installations.
Is authentication required to exploit this vulnerability?
Yes, authentication is required to exploit this vulnerability.
Where can I find more information about vulnerability ZDI-23-1499?
You can find more information about vulnerability ZDI-23-1499 on the Zero Day Initiative website and the Cacti GitHub repository.
- collector/zdi-published
- alias/ZDI-CAN-21001
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/zdi-advisory
- alias/ZDI-23-1499
- alias/CVE-2023-39365
- vendor/cacti
- canonical/cacti cacti