Cacti Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

1.2.031
1.2.131
1.2.231
1.2.330
1.2.430

Przeciwdziałanie

Official Fix84
Temporary Fix0
Workaround0
Unavailable0
Not Defined44

Wykorzystywanie

High1
Functional0
Proof-of-Concept15
Unproven0
Not Defined112

Wektor dostępu

Not Defined0
Physical0
Local2
Adjacent2
Network124

Uwierzytelnianie

Not Defined0
High17
Low51
None60

Interakcja z użytkownikiem

Not Defined0
Required59
None69

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤32
≤48
≤539
≤617
≤713
≤838
≤99
≤102

CVSSv3 Temp

≤10
≤20
≤32
≤414
≤535
≤618
≤725
≤823
≤910
≤101

VulDB

≤10
≤20
≤314
≤418
≤529
≤65
≤725
≤829
≤96
≤102

NVD

≤10
≤20
≤30
≤40
≤514
≤614
≤714
≤84
≤913
≤101

CNA

≤10
≤20
≤30
≤41
≤52
≤61
≤711
≤83
≤95
≤102

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k33
<2k58
<5k37
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k123
<2k5
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (118): 0.1, 0.2, 0.3, 0.4, 0.5, 0.6, 0.6.1, 0.6.2, 0.6.3, 0.6.4, 0.6.5, 0.6.6, 0.6.7, 0.6.8, 0.6.8a, 0.7, 0.8, 0.8.1, 0.8.2, 0.8.2a, 0.8.3, 0.8.3a, 0.8.4, 0.8.5, 0.8.5a, 0.8.6, 0.8.6a, 0.8.6b, 0.8.6c, 0.8.6d, 0.8.6e, 0.8.6f, 0.8.6g, 0.8.6h, 0.8.6i, 0.8.6j, 0.8.6k, 0.8.7, 0.8.7a, 0.8.7b, 0.8.7c, 0.8.7d, 0.8.7e, 0.8.7f, 0.8.7g, 0.8.7h, 0.8.7i, 0.8.8, 0.8.8.g, 0.8.8a, 0.8.8b, 0.8.8c, 0.8.8d, 0.8.8e, 0.8.8f, 0.8.8g, 0.9, 1.0, 1.1, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.1.5, 1.1.6, 1.1.7, 1.1.8, 1.1.9, 1.1.11, 1.1.12, 1.1.13, 1.1.14, 1.1.15, 1.1.16, 1.1.17, 1.1.18, 1.1.19, 1.1.21, 1.1.22, 1.1.23, 1.1.24, 1.1.25, 1.1.26, 1.1.27, 1.1.28, 1.1.29, 1.1.31, 1.1.32, 1.1.33, 1.1.34, 1.1.35, 1.1.36, 1.1.38, 1.2, 1.2.1, 1.2.2, 1.2.3, 1.2.4, 1.2.5, 1.2.6, 1.2.7, 1.2.8, 1.2.9, 1.2.11, 1.2.12, 1.2.13, 1.2.14, 1.2.15, 1.2.16, 1.2.17, 1.2.18, 1.2.19, 1.2.21, 1.2.22, 1.2.23, 1.2.24, 1.2.25, = 1.2.25

Typ oprogramowania: Log Management Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2023-12-225.35.3Cacti XML Template templates_import.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-50250
2023-12-224.44.4Cacti data_debug.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2023-49088
2023-12-227.57.5Cacti HTTP GET managers.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-51448
2023-12-227.57.5Cacti pollers.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-49085
2023-12-224.84.7Cacti XML Template File templates_import.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-50569
2023-12-225.25.1Cacti Incomplete Fix CVE-2023-39360 graphs_new.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-49086
2023-12-227.07.0Cacti link.php Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-49084
2023-10-286.46.4Cacti managers.php form_actions sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-46490
2023-09-074.44.4Cacti reports_admin.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-39511
2023-09-065.55.4Cacti Regular Expression sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-39365
2023-09-064.44.4Cacti data_sources.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39516
2023-09-064.44.4Cacti data_debug.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39515
2023-09-064.44.4Cacti data_sources.php cross site scripting$0-$5kObliczenieNot DefinedOfficial Fix0.02CVE-2023-39366
2023-09-064.64.6Cacti graphs.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39514
2023-09-064.64.6Cacti host.php cross site scripting$0-$5kObliczenieNot DefinedOfficial Fix0.00CVE-2023-39513
2023-09-064.44.4Cacti data_sources.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39512
2023-09-064.84.8Cacti reports_admin.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39510
2023-09-064.84.7Cacti graphs_new.php form_save_button cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39360
2023-09-067.57.4Cacti sql_save sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39357
2023-09-064.34.2Cacti graphs_new.php unserialize privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-30534
2023-09-067.27.0Cacti SNMP snmp.php privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-39362
2023-09-067.57.4Cacti reports_user.php ajax_get_branches sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39358
2023-09-068.58.4Cacti graph_view.php sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-39361
2023-09-067.57.4Cacti graphs.php ajax_hosts_noany sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-39359
2023-09-064.14.1Cacti auth_changepassword.php Redirect$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39364

103 więcej wpisów nie jest pokazywanych

Interested in the pricing of exploits?

See the underground prices here!