Lucene search

DebianDEBIAN:DLA-374-1:7AC13

HistoryDec 26, 2015 - 1:28 p.m.

[SECURITY] [DLA 374-1] cacti security update

2015-12-2613:28:51

lists.debian.org

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.5 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.4%

JSON

Package : cacti
Version : 0.8.7g-1+squeeze9+deb6u11
CVE IDs : CVE-2015-8369 CVE-2015-8377
Debian Bug : 807599

It was discovered that there were SQL injection vulnerabilities in
cacti, a web interface for graphing of monitoring systems.

For Debian 6 Squeeze, this issue has been fixed in cacti version
0.8.7g-1+squeeze9+deb6u11.

Regards,

  ,&#x27;&#x27;`.
 : :&#x27;  :     Chris Lamb
 `. `&#x27;`      [email protected] / chris-lamb.co.uk
   `-

OSVersionArchitecturePackageVersionFilename
Debian6allcacti< 0.8.7g-1+squeeze9+deb6u11cacti_0.8.7g-1+squeeze9+deb6u11_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	6	all	cacti	< 0.8.7g-1+squeeze9+deb6u11	cacti_0.8.7g-1+squeeze9+deb6u11_all.deb

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.5 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.4%

JSON

Related for DEBIAN:DLA-374-1:7AC13