PT-2022-11285 · Unknown+2 · Eyesofnetwork+2

Published

2022-06-30

Updated

2022-07-11

CVE-2021-40643

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions EyesOfNetwork versions prior to 07-07-2021

Description The issue allows for Remote Code Execution on the mail options configuration page. Specifically, in the location of the sendmail application in the cacti configuration page, it is possible to execute any command when making a test of the configuration, also known as "send test mail". The default location for the sendmail application is /usr/sbin/sendmail.

Recommendations For versions prior to 07-07-2021, consider disabling the sendmail application in the cacti configuration page as a temporary workaround until a patch is available. Restrict access to the mail options configuration page to minimize the risk of exploitation. Avoid using the "send test mail" feature until the issue is resolved.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-40643

Affected Products

Eyesofnetwork

Cacti

Sendmail

PT-2022-11285 · Unknown+2 · Eyesofnetwork+2

CVE-2021-40643

Related Identifiers

Affected Products

References · 6