CVE-2022-46169 - Cacti Command Injection Vulnerability

Vulnerability Name

Cacti Command Injection Vulnerability

Description

Cacti contains a command injection vulnerability that allows an unauthenticated user to execute code.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://github.com/Cacti/cacti/security/advisories/GHSA-6p93-p743-35gf

https://nvd.nist.gov/vuln/detail/CVE-2022-46169