Description

Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in the template function of host_templates.php using the graph_template parameter. This vulnerability is fixed in 1.2.29.

INFO

Published Date :

2025-01-27T17:04:16.569Z

Last Modified :

2025-01-27T18:47:49.445Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-54146 vulnerability.

Vendors Products
Cacti
  • Cacti
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-54146.

URL Resource
https://github.com/Cacti/cacti/commit/c7e4ee798d263a3209ae6e7ba182c7b65284d8f0 cve-icon cve-icon
https://github.com/Cacti/cacti/security/advisories/GHSA-vj9g-p7f2-4wqj cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact