VDB
DEBIAN-CVE-2019-11025
DEBIAN-CVE-2019-11025
PUBLISHED
CVSS 5.400000095367432 MEDIUM
In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to XSS.
Risk Scores
CVSS 3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | cacti | 0, 0, 0 |
| Debian:12 | cacti | 0, 0, 0 |
| Debian:14 | cacti | 0 |
| Debian:13 | cacti | 0, 0, 0 |
Timeline
- Apr 8, 2019 CVE Published
- May 10, 2026 CVE Updated