exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-7237

около 6 лет назад

Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.

CVSS3: 8.8

EPSS: Средний

CVE-2020-7237

около 6 лет назад

Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.

CVSS3: 8.8

EPSS: Средний

CVE-2020-7237

около 6 лет назад

Cacti 1.2.8 allows Remote Code Execution (by privileged users) via she ...

CVSS3: 8.8

EPSS: Средний

GHSA-4wfp-xfpc-fxcp

больше 3 лет назад

Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.

EPSS: Средний

openSUSE-SU-2020:0272-1

почти 6 лет назад

Security update for cacti, cacti-spine

EPSS: Низкий

openSUSE-SU-2020:0558-1

почти 6 лет назад

Security update for cacti, cacti-spine

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-7237 Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.	CVSS3: 8.8	47% Средний	около 6 лет назад
CVE-2020-7237 Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.	CVSS3: 8.8	47% Средний	около 6 лет назад
CVE-2020-7237 Cacti 1.2.8 allows Remote Code Execution (by privileged users) via she ...	CVSS3: 8.8	47% Средний	около 6 лет назад
GHSA-4wfp-xfpc-fxcp Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.		47% Средний	больше 3 лет назад
openSUSE-SU-2020:0272-1 Security update for cacti, cacti-spine			почти 6 лет назад
openSUSE-SU-2020:0558-1 Security update for cacti, cacti-spine			почти 6 лет назад

Уязвимостей на страницу