CVE-2020-8813
CVE-2020-8813
Vexday Risk Score
84Fix now
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Popular PoC on GitHub (67 stars) — exploitation code widely available.
CVSS —EPSS 73.8%KEV nãoPoC públicaNuclei simMetasploit —Patch referenciado
Lifecycle
03 Feb 2020Public PoC
22 Feb 2020Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege.
Affected products
n/a · n/apublic PoCs found — 13
githubgithub.com/mhaskar/CVE-2020-8813★ 67githubgithub.com/p0dalirius/CVE-2020-8813-Cacti-RCE-in-graph_realtime★ 7githubgithub.com/0xm4ud/Cacti-CVE-2020-8813★ 1githubgithub.com/hexcowboy/CVE-2020-8813★ 1exploitdbwww.exploit-db.com/exploits/48144unverifiedexploitdbwww.exploit-db.com/exploits/48145unverifiedvulncheckvulncheck.com/xdb/167031624578unverifiedvulncheckvulncheck.com/xdb/25649809565funverifiedcve_referencepacketstormsecurity.com/files/156537/Cacti-1.2.8-Unauthenticated-Remote-Code-Execution.htmlunverifiedvulncheckvulncheck.com/xdb/d5d2581a5455unverifiedcve_referencepacketstormsecurity.com/files/156538/Cacti-1.2.8-Authenticated-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/156593/Cacti-1.2.8-Unauthenticated-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/157477/Open-AudIT-Professional-3.3.1-Remote-Code-Execution.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-04/msg00048.htmlhttp://packetstormsecurity.com/files/156537/Cacti-1.2.8-Unauthenticated-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/156538/Cacti-1.2.8-Authenticated-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/156593/Cacti-1.2.8-Unauthenticated-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/157477/Open-AudIT-Professional-3.3.1-Remote-Code-Execution.htmlhttps://drive.google.com/file/d/1A8hxTyk_NgSp04zPX-23nPbsSDeyDFio/viewhttps://gist.github.com/mhaskar/ebe6b74c32fd0f7e1eedf1aabfd44129https://github.com/Cacti/cacti/issues/3285https://github.com/Cacti/cacti/releaseshttps://lists.debian.org/debian-lts-announce/2022/12/msg00039.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M77SS33IDVNGBU566TK2XVULPW3RXUQ4/