HomePentest-Tools.com Logo

Cacti - Remote Code Execution (CVE-2022-46169)

Severity
CVSSv3 Score
9.8
Exploitable with Sniper
Yes
Vulnerability description

Cacti server is vulnerable to CVE-2022-46169, a Remote Code Execution vulnerability in the remote_agent.php file. The vulnerability exists due to insufficient authorization within the Remote Agent when handling HTTP requests with a custom Forwarded-For HTTP header .A remote non-authenticated attacker can send a specially crafted HTTP request to the affected instance and execute arbitrary OS commands on the server.

Exploit capabilities

Sniper can gain unauthenticated Remote Code Execution on the target system and extract multiple artefacts as evidence.

Risk description

The risk exists that a remote unauthenticated attacker can fully compromise the server in order to steal confidential information, install ransomware, or pivot to the internal network.

Recommendation

Upgrade the Cacti to the latest version.

Detectable with
Network Scanner
Vuln date
May 2022
Published at
Updated at
Software Type
Network monitoring software
Vendor
Cacti
Product
The Cacti Group
Codename
Not available