CVE-2014-5261
CVSS v2.0
7.5 (High)
EPSS
1.28 % (86th)
Affected Products
1
Advisories
2
The graph settings script (graph_settings.php) in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a font size, related to the rrdtool commandline in lib/rrd.php.
Weaknesses
- CWE-94
- Improper Control of Generation of Code ('Code Injection')
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2014-08-22 14:55:09
(10 years ago) - Updated Date
-
2017-09-08 01:29:04
(7 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...