VDB
BDU%3A2020-00950
BDU%3A2020-00950
PUBLISHED
CVSS 10 CRITICAL
Уязвимость в файле graph_realtime.php программного средства мониторинга сети Cacti, позволяющая нарушителю выполнить произвольный код
Risk Scores
CVSS 2.0
10
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| The Cacti Group Inc., PHP Group | Cacti, PHP |
Exploit Intelligence
- 0xm4ud/Cacti-CVE-2020-8813 (github-poc-repo)
- 0xm4ud/Cacti-CVE-2020-8813 (github-poc-repo)
- Cacti v1.2.8 Unauthenticated Remote Code Execution (github-poc-repo)
- Cacti v1.2.8 Unauthenticated Remote Code Execution (github-poc-repo)
- CVE-2020-8813 - RCE through graph_realtime.php in Cacti 1.2.8 (github-poc-repo)
- CVE-2020-8813 - RCE through graph_realtime.php in Cacti 1.2.8 (github-poc-repo)
- CVE-2020-8813 - RCE through graph_realtime.php in Cacti 1.2.8 (github-poc)
- CVE-2020-8813 - RCE through graph_realtime.php in Cacti 1.2.8 (github-poc)
- Cacti v1.2.8 Unauthenticated Remote Code Execution (github-poc)
- Cacti v1.2.8 Unauthenticated Remote Code Execution (github-poc)
…and 17 more exploits
Timeline
- Mar 10, 2020 CVE Published
References
- https://github.com/Cacti/cacti/releases url
- https://nvd.nist.gov/vuln/detail/CVE-2020-8813 url
- https://packetstormsecurity.com/files/156537/Cacti-1.2.8-Unauthenticated-Remote-Code-Execution.html url
- https://packetstormsecurity.com/files/156538/Cacti-1.2.8-Authenticated-Remote-Code-Execution.html url
- https://packetstormsecurity.com/files/156593/Cacti-1.2.8-Unauthenticated-Remote-Code-Execution.html url
- https://drive.google.com/file/d/1A8hxTyk_NgSp04zPX-23nPbsSDeyDFio/view url
- https://gist.github.com/mhaskar/ebe6b74c32fd0f7e1eedf1aabfd44129 url
- https://github.com/Cacti/cacti/issues/3285 url
- https://shells.systems/cacti-v1-2-8-authenticated-remote-code-execution-cve-2020-8813/ url