CVE-2023-39359

Name of the Vulnerable Software and Affected Versions Cacti versions prior to 1.2.25

Description An authenticated SQL injection issue was discovered in Cacti, an open source operational monitoring and fault management framework. This issue allows authenticated users to perform privilege escalation and remote code execution. The vulnerability is located in the graphs.php file and is related to the ajax hosts and ajax hosts noany functions. When the site id parameter is greater than 0, it is directly reflected in the WHERE clause of the SQL statement, creating an SQL injection vulnerability.

Recommendations For versions prior to 1.2.25, upgrade to version 1.2.25 or later to address the issue. As a temporary workaround, consider restricting access to the graphs.php file or disabling the ajax hosts and ajax hosts noany functions until a patch is applied. Avoid using the site id parameter in the affected API endpoints until the issue is resolved.