CVE-2024-31460

MEDIUM

Cacti < 1.2.27 - SQL Injection via automation_tree_rules.php

Title source: llm

Description

Cacti provides an operational monitoring and fault management framework. Prior to version 1.2.27, some of the data stored in `automation_tree_rules.php` is not thoroughly checked and is used to concatenate the SQL statement in `create_all_header_nodes()` function from `lib/api_automation.php` , finally resulting in SQL injection. Using SQL based secondary injection technology, attackers can modify the contents of the Cacti database, and based on the modified content, it may be possible to achieve further impact, such as arbitrary file reading, and even remote code execution through arbitrary file writing. Version 1.2.27 contains a patch for the issue.

References (4)

Core 4

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2024/09/msg00027.html

Product

https://lists.fedoraproject.org/archives/list/[email protected]/message/RBEOAFKRARQHTDIYSL723XAFJ2Q6624X/

Exploit, Vendor Advisory x_refsource_confirm

https://github.com/Cacti/cacti/security/advisories/GHSA-gj3f-p326-gh8r

Exploit, Vendor Advisory x_refsource_misc

https://github.com/Cacti/cacti/security/advisories/GHSA-cx8g-hvq8-p2rv

Scores

CVSS v3 6.5

EPSS 0.0169

EPSS Percentile 82.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-89

Status published

Products (2)

cacti/cacti < 1.2.27

fedoraproject/fedora 39

Published May 14, 2024

Tracked Since Feb 18, 2026