CVE-2025-22604

Published: Jan 27, 2025Modified: Nov 3, 2025

7.2

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

Cacti is an open source performance and fault management framework. Due to a flaw in multi-line SNMP result parser, authenticated users can inject malformed OIDs in the response. When processed by ss_net_snmp_disk_io() or ss_net_snmp_disk_bytes(), a part of each OID will be used as a key in an array that is used as part of a system command, causing a command execution vulnerability. This vulnerability is fixed in 1.2.29.

Affected (1)

Products: Cacti: Cacti

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cacti Cacti	Before 1.2.29

Related CWEs

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (3)

https://github.com/Cacti/cacti/commit/c7e4ee798d263a3209ae6e7ba182c7b65284d8f0

Source: security-advisories@github.com

Patch

https://github.com/Cacti/cacti/security/advisories/GHSA-c5j8-jxj3-hh36

Source: security-advisories@github.com

ExploitVendor Advisory

https://lists.debian.org/debian-lts-announce/2025/02/msg00010.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.