PT-2024-5188 · Cacti+3 · Cacti+3

Ishgard-2

Published

2023-07-13

Updated

2025-01-24

CVE-2024-31444

CVSS v2.0

5.5

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.27

Description: Cacti provides an operational monitoring and fault management framework. The issue arises from the automation tree rules form save() function in automation tree rules.php, where some data is not thoroughly checked and is used to concatenate the HTML statement in the form confirm() function from lib/html.php, resulting in cross-site scripting.

Recommendations: For versions prior to 1.2.27, update to version 1.2.27 or later, as it contains a patch for the issue. As a temporary workaround, consider disabling the automation tree rules form save() function until a patch is available. Restrict access to the automation tree rules.php file to minimize the risk of exploitation. Avoid using the form confirm() function from lib/html.php with unverified data until the issue is resolved.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALT-PU-2023-4394

ALT-PU-2023-4396

ALT-PU-2023-5196

ALT-PU-2024-17822

ALT-PU-2025-1813

BDU:2024-05744

CVE-2024-31444

DLA-3884-1

GHSA-P4CH-7HJW-6M87

OPENSUSE-SU-2024:0274-1

OPENSUSE-SU-2024:0276-1

OPENSUSE-SU-2024:13962-1

USN-6969-1

Affected Products

Alt Linux

Cacti

Linuxmint

Ubuntu

PT-2024-5188 · Cacti+3 · Cacti+3

CVE-2024-31444

Weakness Enumeration

Related Identifiers

Affected Products

References · 78