VDB

DEBIAN-CVE-2019-17358

DEBIAN-CVE-2019-17358 PUBLISHED CVSS 8.100000381469727 HIGH

Cacti through 1.2.7 is affected by multiple instances of lib/functions.php unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influence object data values and control actions taken by Cacti or potentially cause memory corruption in the PHP module.

Risk Scores

CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Affected Products

VendorProductVersions
Debian:11cacti0, 0, 0
Debian:12cacti0, 0, 0
Debian:14cacti0
Debian:13cacti0, 0, 0

Timeline

  • Dec 12, 2019 CVE Published
  • May 10, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›