cvelistv5 - cve-2021-3816

CVE-2021-3816 (GCVE-0-2021-3816)

Vulnerability from cvelistv5 – Published: 2022-01-19 20:38 – Updated: 2024-08-03 17:09

Summary

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.

Severity ?

No CVSS data available.

CWE

CWE-79

Assigner

redhat

References

URL

Tags

https://www.cacti.net/info/changelog

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	Cacti	Affected: 1.1.38

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T17:09:09.541Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.cacti.net/info/changelog"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cacti",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "1.1.38"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-01-19T20:38:50",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.cacti.net/info/changelog"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2021-3816",
    "datePublished": "2022-01-19T20:38:50",
    "dateReserved": "2021-09-17T00:00:00",
    "dateUpdated": "2024-08-03T17:09:09.541Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cacti:cacti:1.1.38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FEFA713C-B4BF-4F75-BF58-68904DC58CB6\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \\\"Copy\\\" method at user_group_admin.php.\"}, {\"lang\": \"es\", \"value\": \"Cacti versi\\u00f3n 1.1.38, permite a usuarios autenticados con permisos de administraci\\u00f3n de usuarios inyectar HTML arbitrario en el campo group_prefix durante la creaci\\u00f3n de un nuevo grupo por medio del m\\u00e9todo \\\"Copy\\\" en el archivo user_group_admin.php\"}]",
      "id": "CVE-2021-3816",
      "lastModified": "2024-11-21T06:22:31.437",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\", \"baseScore\": 5.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.3, \"impactScore\": 2.7}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:S/C:N/I:P/A:N\", \"baseScore\": 3.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 6.8, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2022-01-19T21:15:08.497",
      "references": "[{\"url\": \"https://www.cacti.net/info/changelog\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://www.cacti.net/info/changelog\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-3816\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2022-01-19T21:15:08.497\",\"lastModified\":\"2024-11-21T06:22:31.437\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \\\"Copy\\\" method at user_group_admin.php.\"},{\"lang\":\"es\",\"value\":\"Cacti versi\u00f3n 1.1.38, permite a usuarios autenticados con permisos de administraci\u00f3n de usuarios inyectar HTML arbitrario en el campo group_prefix durante la creaci\u00f3n de un nuevo grupo por medio del m\u00e9todo \\\"Copy\\\" en el archivo user_group_admin.php\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:N/I:P/A:N\",\"baseScore\":3.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.8,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:1.1.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEFA713C-B4BF-4F75-BF58-68904DC58CB6\"}]}]}],\"references\":[{\"url\":\"https://www.cacti.net/info/changelog\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://www.cacti.net/info/changelog\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]}]}}"
  }
}

CERTFR-2021-AVI-969

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Debian 9 (strech) LTS versions antérieures à 4.9.290-1
Debian 10 (buster) versions antérieures à 4.19.208-1
Debian 11 (bullseye) versions antérieures à 5.10.84-1

Pour plus d'informations, veuillez-vous référer à la page de suivi des vulnérabilités de l'éditeur. [1]

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Debian dla-2843 du 16 décembre 2021	None	vendor-advisory
[1] Page de suivi des vulnérabilités	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eDebian 9 (strech) LTS versions ant\u00e9rieures \u00e0 4.9.290-1\u003c/li\u003e \u003cli\u003eDebian 10 (buster) versions ant\u00e9rieures \u00e0 4.19.208-1\u003c/li\u003e \u003cli\u003eDebian 11 (bullseye) versions ant\u00e9rieures \u00e0 5.10.84-1\u003c/li\u003e \u003c/ul\u003e \u003cp\u003ePour plus d\u0027informations, veuillez-vous r\u00e9f\u00e9rer \u00e0 la page de suivi des vuln\u00e9rabilit\u00e9s de l\u0027\u00e9diteur. [1]\u003c/p\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-20322",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-20322"
    },
    {
      "name": "CVE-2021-20317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-20317"
    },
    {
      "name": "CVE-2021-3655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3655"
    },
    {
      "name": "CVE-2021-3816",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3816"
    },
    {
      "name": "CVE-2021-3679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3679"
    },
    {
      "name": "CVE-2020-3702",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-3702"
    },
    {
      "name": "CVE-2021-41864",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-41864"
    },
    {
      "name": "CVE-2021-38204",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-38204"
    },
    {
      "name": "CVE-2021-3760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3760"
    },
    {
      "name": "CVE-2021-38199",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-38199"
    },
    {
      "name": "CVE-2021-3753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3753"
    },
    {
      "name": "CVE-2021-20321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-20321"
    },
    {
      "name": "CVE-2021-37159",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37159"
    },
    {
      "name": "CVE-2021-40490",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40490"
    },
    {
      "name": "CVE-2021-3820",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3820"
    },
    {
      "name": "CVE-2021-38198",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-38198"
    },
    {
      "name": "CVE-2021-4273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-4273"
    },
    {
      "name": "CVE-2021-22543",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22543"
    },
    {
      "name": "CVE-2021-0920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0920"
    },
    {
      "name": "CVE-2021-3612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3612"
    },
    {
      "name": "CVE-2021-3732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3732"
    },
    {
      "name": "CVE-2020-16119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-16119"
    },
    {
      "name": "CVE-2021-42008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-42008"
    },
    {
      "name": "CVE-2021-3653",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3653"
    },
    {
      "name": "CVE-2021-43389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-43389"
    }
  ],
  "links": [
    {
      "title": "[1] Page de suivi des vuln\u00e9rabilit\u00e9s",
      "url": "https://security-tracker.debian.org/tracker/source-package/linux"
    }
  ],
  "reference": "CERTFR-2021-AVI-969",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-12-20T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nDebian. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service,\nune atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Debian dla-2843 du 16 d\u00e9cembre 2021",
      "url": "https://www.debian.org/lts/security/2021/dla-2843"
    }
  ]
}

CERTFR-2021-AVI-969

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Debian 9 (strech) LTS versions antérieures à 4.9.290-1
Debian 10 (buster) versions antérieures à 4.19.208-1
Debian 11 (bullseye) versions antérieures à 5.10.84-1

Pour plus d'informations, veuillez-vous référer à la page de suivi des vulnérabilités de l'éditeur. [1]

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Debian dla-2843 du 16 décembre 2021	None	vendor-advisory
[1] Page de suivi des vulnérabilités	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eDebian 9 (strech) LTS versions ant\u00e9rieures \u00e0 4.9.290-1\u003c/li\u003e \u003cli\u003eDebian 10 (buster) versions ant\u00e9rieures \u00e0 4.19.208-1\u003c/li\u003e \u003cli\u003eDebian 11 (bullseye) versions ant\u00e9rieures \u00e0 5.10.84-1\u003c/li\u003e \u003c/ul\u003e \u003cp\u003ePour plus d\u0027informations, veuillez-vous r\u00e9f\u00e9rer \u00e0 la page de suivi des vuln\u00e9rabilit\u00e9s de l\u0027\u00e9diteur. [1]\u003c/p\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-20322",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-20322"
    },
    {
      "name": "CVE-2021-20317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-20317"
    },
    {
      "name": "CVE-2021-3655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3655"
    },
    {
      "name": "CVE-2021-3816",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3816"
    },
    {
      "name": "CVE-2021-3679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3679"
    },
    {
      "name": "CVE-2020-3702",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-3702"
    },
    {
      "name": "CVE-2021-41864",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-41864"
    },
    {
      "name": "CVE-2021-38204",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-38204"
    },
    {
      "name": "CVE-2021-3760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3760"
    },
    {
      "name": "CVE-2021-38199",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-38199"
    },
    {
      "name": "CVE-2021-3753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3753"
    },
    {
      "name": "CVE-2021-20321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-20321"
    },
    {
      "name": "CVE-2021-37159",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37159"
    },
    {
      "name": "CVE-2021-40490",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40490"
    },
    {
      "name": "CVE-2021-3820",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3820"
    },
    {
      "name": "CVE-2021-38198",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-38198"
    },
    {
      "name": "CVE-2021-4273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-4273"
    },
    {
      "name": "CVE-2021-22543",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22543"
    },
    {
      "name": "CVE-2021-0920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0920"
    },
    {
      "name": "CVE-2021-3612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3612"
    },
    {
      "name": "CVE-2021-3732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3732"
    },
    {
      "name": "CVE-2020-16119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-16119"
    },
    {
      "name": "CVE-2021-42008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-42008"
    },
    {
      "name": "CVE-2021-3653",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3653"
    },
    {
      "name": "CVE-2021-43389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-43389"
    }
  ],
  "links": [
    {
      "title": "[1] Page de suivi des vuln\u00e9rabilit\u00e9s",
      "url": "https://security-tracker.debian.org/tracker/source-package/linux"
    }
  ],
  "reference": "CERTFR-2021-AVI-969",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-12-20T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nDebian. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service,\nune atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Debian dla-2843 du 16 d\u00e9cembre 2021",
      "url": "https://www.debian.org/lts/security/2021/dla-2843"
    }
  ]
}

GHSA-6GQ5-766M-4C86

Vulnerability from github – Published: 2022-01-20 00:00 – Updated: 2022-01-26 00:02

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-3816"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-01-19T21:15:00Z",
    "severity": "MODERATE"
  },
  "details": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php.",
  "id": "GHSA-6gq5-766m-4c86",
  "modified": "2022-01-26T00:02:22Z",
  "published": "2022-01-20T00:00:20Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3816"
    },
    {
      "type": "WEB",
      "url": "https://www.cacti.net/info/changelog"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CNVD-2022-08363

Vulnerability from cnvd - Published: 2022-02-05

Title

Cacti跨站脚本漏洞（CNVD-2022-08363）

Description

Cacti是Cacti团队的一套开源的网络流量监测和分析工具。该工具通过snmpget来获取数据，使用RRDtool绘画图形进行分析，并提供数据和用户管理功能。 Cacti存在跨站脚本漏洞，该漏洞源于具有用户管理权限且经过身份验证的用户在用户组admin.php中通过Copy方法创建新组时，在组前缀字段中注入任意HTML。目前没有详细的漏洞细节提供。

Severity

低

Patch Name

Cacti跨站脚本漏洞（CNVD-2022-08363）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.cacti.net/info/changelog

Reference

https://nvd.nist.gov/vuln/detail/CVE-2021-3816

Impacted products

Name
Cacti Cacti 1.1.38

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-3816",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-3816"
    }
  },
  "description": "Cacti\u662fCacti\u56e2\u961f\u7684\u4e00\u5957\u5f00\u6e90\u7684\u7f51\u7edc\u6d41\u91cf\u76d1\u6d4b\u548c\u5206\u6790\u5de5\u5177\u3002\u8be5\u5de5\u5177\u901a\u8fc7snmpget\u6765\u83b7\u53d6\u6570\u636e\uff0c\u4f7f\u7528RRDtool\u7ed8\u753b\u56fe\u5f62\u8fdb\u884c\u5206\u6790\uff0c\u5e76\u63d0\u4f9b\u6570\u636e\u548c\u7528\u6237\u7ba1\u7406\u529f\u80fd\u3002\n\nCacti\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5177\u6709\u7528\u6237\u7ba1\u7406\u6743\u9650\u4e14\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u7528\u6237\u5728\u7528\u6237\u7ec4admin.php\u4e2d\u901a\u8fc7Copy\u65b9\u6cd5\u521b\u5efa\u65b0\u7ec4\u65f6\uff0c\u5728\u7ec4\u524d\u7f00\u5b57\u6bb5\u4e2d\u6ce8\u5165\u4efb\u610fHTML\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.cacti.net/info/changelog",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-08363",
  "openTime": "2022-02-05",
  "patchDescription": "Cacti\u662fCacti\u56e2\u961f\u7684\u4e00\u5957\u5f00\u6e90\u7684\u7f51\u7edc\u6d41\u91cf\u76d1\u6d4b\u548c\u5206\u6790\u5de5\u5177\u3002\u8be5\u5de5\u5177\u901a\u8fc7snmpget\u6765\u83b7\u53d6\u6570\u636e\uff0c\u4f7f\u7528RRDtool\u7ed8\u753b\u56fe\u5f62\u8fdb\u884c\u5206\u6790\uff0c\u5e76\u63d0\u4f9b\u6570\u636e\u548c\u7528\u6237\u7ba1\u7406\u529f\u80fd\u3002\r\n\r\nCacti\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5177\u6709\u7528\u6237\u7ba1\u7406\u6743\u9650\u4e14\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u7528\u6237\u5728\u7528\u6237\u7ec4admin.php\u4e2d\u901a\u8fc7Copy\u65b9\u6cd5\u521b\u5efa\u65b0\u7ec4\u65f6\uff0c\u5728\u7ec4\u524d\u7f00\u5b57\u6bb5\u4e2d\u6ce8\u5165\u4efb\u610fHTML\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cacti\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2022-08363\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Cacti Cacti 1.1.38"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-3816",
  "serverity": "\u4f4e",
  "submitTime": "2022-01-23",
  "title": "Cacti\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2022-08363\uff09"
}

GSD-2021-3816

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Aliases

CVE-2021-3816

Aliases

CVE-2021-3816

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-3816",
    "description": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php.",
    "id": "GSD-2021-3816",
    "references": [
      "https://www.suse.com/security/cve/CVE-2021-3816.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-3816"
      ],
      "details": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php.",
      "id": "GSD-2021-3816",
      "modified": "2023-12-13T01:23:34.852502Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2021-3816",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Cacti",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "1.1.38"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-79",
                "lang": "eng",
                "value": "CWE-79"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.cacti.net/info/changelog",
            "refsource": "MISC",
            "url": "https://www.cacti.net/info/changelog"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cacti:cacti:1.1.38:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2021-3816"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.cacti.net/info/changelog",
              "refsource": "MISC",
              "tags": [
                "Release Notes",
                "Vendor Advisory"
              ],
              "url": "https://www.cacti.net/info/changelog"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 6.8,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.3,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2022-01-25T16:19Z",
      "publishedDate": "2022-01-19T21:15Z"
    }
  }
}

FKIE_CVE-2021-3816

Vulnerability from fkie_nvd - Published: 2022-01-19 21:15 - Updated: 2024-11-21 06:22

Severity ?

5.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Summary

References

	URL	Tags
	secalert@redhat.com	https://www.cacti.net/info/changelog	Release Notes, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.cacti.net/info/changelog	Release Notes, Vendor Advisory

Impacted products

	Vendor	Product	Version
	cacti	cacti	1.1.38

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cacti:cacti:1.1.38:*:*:*:*:*:*:*",
              "matchCriteriaId": "FEFA713C-B4BF-4F75-BF58-68904DC58CB6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via \"Copy\" method at user_group_admin.php."
    },
    {
      "lang": "es",
      "value": "Cacti versi\u00f3n 1.1.38, permite a usuarios autenticados con permisos de administraci\u00f3n de usuarios inyectar HTML arbitrario en el campo group_prefix durante la creaci\u00f3n de un nuevo grupo por medio del m\u00e9todo \"Copy\" en el archivo user_group_admin.php"
    }
  ],
  "id": "CVE-2021-3816",
  "lastModified": "2024-11-21T06:22:31.437",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 3.5,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 6.8,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-01-19T21:15:08.497",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://www.cacti.net/info/changelog"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://www.cacti.net/info/changelog"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-3816 (GCVE-0-2021-3816)

CERTFR-2021-AVI-969

Solution

CERTFR-2021-AVI-969

Solution

GHSA-6GQ5-766M-4C86

CNVD-2022-08363

GSD-2021-3816

FKIE_CVE-2021-3816

Tags

Sightings

Nomenclature