CyberSecurityBoard
Sponsor Register Login

SQLi vulnerability in Cacti could lead to RCE

A blind SQL injection vulnerability in Cacti, a widely-used network monitoring, performance and fault management framework, could lead to information disclosure and potentially remote code execution.
Cacti is often used in network operation centers of telecoms and web hosting providers, to collect network performance data and store it in RRDtool, a logging and graphing database and system that, through a web interface, creates graphical representations of the collected data.
CVE-2023-51448 is a vulnerability within Cacti's SNMP Notification Receivers feature that could allow a threat actor to disclose all Cacti database contents or, depending on the database configuration, even trigger remote code execution.
The vulnerability, which affects versions 1.2.25, was discovered by Synopsys researcher Matthew Hogg and has been fixed by the maintainers in late December 2023.
A year ago, internet-exposed Cacti servers were targeted by attackers wielding an exploit for CVE-2022-46169, a critical command injection flaw that could be exploited remotely by unauthenticated users.
To exploit CVE-2023-51448 they must have access to an account with specific permissions or leverage another vulnerability to bypass the authentication requirement.
There is currently no indication that the vulnerability is being exploited in the wild.
Cacti users are advised to upgrade to version 1.2.26, which fixed this and other vulnerabilities.


This Cyber News was published on www.helpnetsecurity.com. Publication date: Tue, 09 Jan 2024 12:13:05 +0000


Cyber News related to SQLi vulnerability in Cacti could lead to RCE

Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability - A critical vulnerability in the Cacti Web-based open source framework for monitoring network performance gives attackers a way to disclose Cacti's entire database contents - presenting a prickly risk for organizations. Thousands of websites use Cacti ...
2 years ago Darkreading.com CVE-2023-51448 CVE-2023-49084 CVE-2022-46169 CVE-2023-39362
Cacti Blind SQL Injection Flaw Enables Remote Code Execution - Cacti, the performance and fault management framework, has been discovered with a blind SQL injection vulnerability, which could reveal Cacti database contents or trigger remote code execution. The CVE for this vulnerability has been assigned with ...
2 years ago Gbhackers.com CVE-2023-51448 CVE-2023-49084
SQLi vulnerability in Cacti could lead to RCE - A blind SQL injection vulnerability in Cacti, a widely-used network monitoring, performance and fault management framework, could lead to information disclosure and potentially remote code execution. Cacti is often used in network operation centers ...
2 years ago Helpnetsecurity.com CVE-2023-51448 CVE-2022-46169
CVE-2024-32739 - CVE-2024-32735 - Missing Authentication for Critical Function (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)An unauthenticated remote attacker can access the PDNU REST APIs. For example, the attacker can fetch sensitive information (i.e., login ...
1 year ago Tenable.com
CVE-2024-32738 - CVE-2024-32735 - Missing Authentication for Critical Function (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)An unauthenticated remote attacker can access the PDNU REST APIs. For example, the attacker can fetch sensitive information (i.e., login ...
1 year ago Tenable.com
CVE-2024-32737 - CVE-2024-32735 - Missing Authentication for Critical Function (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)An unauthenticated remote attacker can access the PDNU REST APIs. For example, the attacker can fetch sensitive information (i.e., login ...
1 year ago Tenable.com
CVE-2024-32736 - CVE-2024-32735 - Missing Authentication for Critical Function (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)An unauthenticated remote attacker can access the PDNU REST APIs. For example, the attacker can fetch sensitive information (i.e., login ...
1 year ago Tenable.com
CVE-2024-32735 - CVE-2024-32735 - Missing Authentication for Critical Function (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)An unauthenticated remote attacker can access the PDNU REST APIs. For example, the attacker can fetch sensitive information (i.e., login ...
1 year ago Tenable.com
Prevent Command Injection and SQLi Attacks Over MCP - Command Injection and SQL Injection (SQLi) attacks remain among the most critical security threats facing web applications today. These vulnerabilities allow attackers to execute arbitrary commands or manipulate backend databases, leading to data ...
4 months ago Akamai.com CVE-2024-12345 CVE-2024-67890
CVE-2022-46169 - Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. In affected versions a command injection vulnerability allows an unauthenticated user to execute arbitrary code ...
1 year ago
Cisco Routers Exposed to Remote Code Execution (RCE) Attacks: How to Protect Your Network - Protecting networks from remote code execution (RCE) attacks is now more important than ever, as thousands of end-of-life Cisco routers are exposed to these vulnerabilities. On June 10, 2020 research revealed that over 19,000 Cisco devices were still ...
3 years ago Bleepingcomputer.com
SQLi Threat Targets WordPress Memberships Plugin - A critical SQL injection (SQLi) vulnerability has been discovered in the WordPress Memberships plugin, putting thousands of websites at risk. This flaw allows attackers to execute arbitrary SQL commands, potentially leading to unauthorized data ...
6 months ago Infosecurity-magazine.com
CVE-2023-51448 - Cacti provides an operational monitoring and fault management framework. Version 1.2.25 has a Blind SQL Injection (SQLi) vulnerability within the SNMP Notification Receivers feature in the file `‘managers.php’`. An authenticated attacker with the ...
1 year ago
CVE-2023-49088 - Cacti is an open source operational monitoring and fault management framework. The fix applied for CVE-2023-39515 in version 1.2.25 is incomplete as it enables an adversary to have a victim browser execute malicious code when a victim user hovers ...
1 year ago
CVE-2023-39515 - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability allows an authenticated user to poison data stored in the cacti's database. These ...
1 year ago
CVE-2023-30534 - Cacti is an open source operational monitoring and fault management framework. There are two instances of insecure deserialization in Cacti version 1.2.24. While a viable gadget chain exists in Cacti’s vendor directory (phpseclib), the necessary ...
2 years ago
Exploits for pre-auth Fortinet FortiWeb RCE flaw released, patch now - Proof-of-concept exploits have been released for a critical SQLi vulnerability in Fortinet FortiWeb that can be used to achieve pre-authenticated remote code execution on vulnerable servers. "An improper neutralization of special elements used ...
8 months ago Bleepingcomputer.com
Week in review: GitLab account takeover flaw, attackers exploiting Ivanti Connect Secure zero-days - Social engineer reveals effective tricks for real-world intrusionsIn this Help Net Security interview, Jayson E. Street, Chief Adversarial Officer at Secure Yeti, discusses intriguing aspects of social engineering and unconventional methods for ...
2 years ago Helpnetsecurity.com CVE-2024-20700 Akira
CVE-2025-66399 - Cacti is an open source performance and fault management framework. Prior to 1.2.29, there is an input-validation flaw in the SNMP device configuration functionality. An authenticated Cacti user can supply crafted SNMP community strings containing ...
3 months ago
CVE-2023-39366 - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability allows an authenticated user to poison data stored in the _cacti_'s database. These ...
2 years ago
CVE-2023-39510 - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability allows an authenticated user to poison data stored in the _cacti_'s database. These ...
2 years ago
CVE-2023-39512 - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability which allows an authenticated user to poison data stored in the _cacti_'s database. ...
2 years ago
CVE-2023-39511 - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability which allows an authenticated user to poison data stored in the _cacti_'s database. ...
2 years ago
CVE-2023-39516 - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability which allows an authenticated user to poison data stored in the _cacti_'s database. ...
1 year ago
Juniper warns of critical RCE bug in its firewalls and switches - Juniper Networks has released security updates to fix a critical pre-auth remote code execution vulnerability in its SRX Series firewalls and EX Series switches. Found in the devices' J-Web configuration interfaces and tracked as CVE-2024-21591, this ...
2 years ago Bleepingcomputer.com CVE-2024-21591 CVE-2023-36844 CVE-2023-36845 CVE-2023-36846 CVE-2023-36847

Latest Cyber News


    Cyber Trends (last 7 days)


    Trending Cyber News (last 7 days)