CVE: Common Vulnerabilities and Exposures

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

Expand or collapse notification button

Required CVE Record Information

Description

Under certain ldap conditions, Cacti authentication can be bypassed with certain credential types.

CWE 1 Total

CWE-287: CWE-287

Product Status

Versions 1 Total

Default Status: unknown

affected

References 7 Total

https://github.com/Cacti/cacti/issues/4562
external site
lists.debian.org: [debian-lts-announce] 20220329 [SECURITY] [DLA 2965-1] cacti security update
external site
mailing-list
lists.fedoraproject.org: FEDORA-2022-6a7e259e15
external site
vendor-advisory
lists.fedoraproject.org: FEDORA-2022-e619e3d5d0
external site
vendor-advisory
lists.fedoraproject.org: FEDORA-2022-70f5c7ff72
external site
vendor-advisory
debian.org: DSA-5298
external site
vendor-advisory
lists.debian.org: [debian-lts-announce] 20221231 [SECURITY] [DLA 3252-1] cacti security update
external site
mailing-list

Updated: 2024-08-02

This container includes required additional information provided by the CVE Program for this vulnerability.

References 7 Total

https://github.com/Cacti/cacti/issues/4562
external site
x_transferred
lists.debian.org: [debian-lts-announce] 20220329 [SECURITY] [DLA 2965-1] cacti security update
external site
mailing-listx_transferred
lists.fedoraproject.org: FEDORA-2022-6a7e259e15
external site
vendor-advisoryx_transferred
lists.fedoraproject.org: FEDORA-2022-e619e3d5d0
external site
vendor-advisoryx_transferred
lists.fedoraproject.org: FEDORA-2022-70f5c7ff72
external site
vendor-advisoryx_transferred
debian.org: DSA-5298
external site
vendor-advisoryx_transferred
lists.debian.org: [debian-lts-announce] 20221231 [SECURITY] [DLA 3252-1] cacti security update
external site
mailing-listx_transferred