PT-2024-3769 · Cacti+4 · Cacti+4

012Git012

Published

2023-07-13

Updated

2026-04-01

CVE-2024-31459

CVSS v3.1

8.0

High

Vector

AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Cacti versions prior to 1.2.27

Description Cacti provides an operational monitoring and fault management framework. There is a file inclusion issue in the lib/plugin.php file, specifically with the api plugin hook() function, which reads the plugin hooks and plugin config tables in the database. The read data is directly used to concatenate the file path, which is used for file inclusion. Combined with SQL injection vulnerabilities, remote code execution can be implemented.

Recommendations For versions prior to 1.2.27, update to version 1.2.27 or later, which contains a patch for the issue. As a temporary workaround, consider disabling the api plugin hook() function in the lib/plugin.php file until a patch is available. Restrict access to the lib/plugin.php file to minimize the risk of exploitation.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-98

Related Identifiers

ALT-PU-2023-4394

ALT-PU-2023-4396

ALT-PU-2023-5196

ALT-PU-2024-17822

ALT-PU-2025-1813

BDU:2024-04119

CVE-2024-31459

DLA-3884-1

GHSA-CX8G-HVQ8-P2RV

GHSA-GJ3F-P326-GH8R

GHSA-PFH9-GWM6-86VP

OPENSUSE-SU-2024:0274-1

OPENSUSE-SU-2024:0276-1

OPENSUSE-SU-2024:13962-1

USN-6969-1

Affected Products

Alt Linux

Cacti

Linuxmint

Red Os

Ubuntu

PT-2024-3769 · Cacti+4 · Cacti+4

CVE-2024-31459

Weakness Enumeration

Related Identifiers

Affected Products

References · 76