CVE-2024-31443

Cacti XSS vulnerability in lib/html_tree.php by reading dirty data stored in database

CVSS 5.7 MEDIUMEPSS 0.8%CWE-79

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 5.7EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

13 May 2024Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Cacti provides an operational monitoring and fault management framework. Prior to 1.2.27, some of the data stored in `form_save()` function in `data_queries.php` is not thoroughly checked and is used to concatenate the HTML statement in `grow_right_pane_tree()` function from `lib/html.php` , finally resulting in cross-site scripting. Version 1.2.27 contains a patch for the issue.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

Affected products

Cacti · cacti

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Cacti/cacti/commit/f946fa537d19678f938ddbd784a10e3290d275cf https://github.com/Cacti/cacti/security/advisories/GHSA-rqc8-78cm-85j3 https://lists.debian.org/debian-lts-announce/2024/09/msg00027.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RBEOAFKRARQHTDIYSL723XAFJ2Q6624X/