Cybersecurity Alerts

Cacti Command Injection Vulnerability

Cacti contains a command injection vulnerability that allows an unauthenticated user to execute code.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-74

References

• https://github.com/Cacti/cacti/security/advisories/GHSA-6p93-p743-35gf
• https://nvd.nist.gov/vuln/detail/CVE-2022-46169