← volver
CVE-2014-4000

CVE-2014-4000

EPSS 1.7%
Cacti before 1.0.0 allows remote authenticated users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object, related to calling unserialize(stripslashes()).
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://forums.cacti.net/viewtopic.php?f=4&t=56794https://security.gentoo.org/glsa/201711-10https://security-tracker.debian.org/tracker/CVE-2014-4000https://www.cacti.net/release_notes_1_0_0.php