VDB

DEBIAN-CVE-2019-11025

DEBIAN-CVE-2019-11025 PUBLISHED CVSS 5.400000095367432 MEDIUM

In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to XSS.

Risk Scores

CVSS 3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Affected Products

VendorProductVersions
Debian:11cacti0, 0, 0
Debian:12cacti0, 0, 0
Debian:14cacti0
Debian:13cacti0, 0, 0

Timeline

  • Apr 8, 2019 CVE Published
  • May 10, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›