CVE-2024-29895 | Cacti 1.3.x DEV cmd_realtime.php poller_id command injection

Posted by Angelo Barbosa | May 13, 2024 | CVE

A vulnerability was found in Cacti 1.3.x DEV. It has been declared as very critical. This vulnerability affects unknown code of the file cmd_realtime.php. The manipulation of the argument poller_id leads to command injection.

This vulnerability was named CVE-2024-29895. The attack can be initiated remotely. There is no exploit available.

CVE-2024-29895 | Cacti 1.3.x DEV cmd_realtime.php poller_id command injection

Related Posts

CVE-2024-4660 | GitLab Enterprise Edition up to 17.1.6/17.2.4/17.3.1 Private Project authorization (Issue 460892)

CVE-2024-4080 | NI LabVIEW up to 24.1 VI tdcore.dll memory corruption

CVE-2024-8667 | HurryTimer Plugin up to 2.10.0 on WordPress authorization

CVE-2024-32661 | FreeRDP up to 3.5.0 null pointer dereference (GHSA-p5m5-342g-pv9m)