data_input.php in Cacti 1.2.8 allows remote code execution via a crafted Input String to Data Collection -> Data Input Methods -> Unix -> Ping Host. NOTE: the vendor has stated "This is a false alarm.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/Cacti/cacti/issues/3186 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-01-15T06:03:56
Updated: 2024-08-04T09:18:02.981Z
Reserved: 2020-01-15T00:00:00
Link: CVE-2020-7058
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-01-15T07:15:12.927
Modified: 2024-08-04T10:15:18.827
Link: CVE-2020-7058
Redhat
No data.