Revision Date: | 2017-11-24 | Version: | 1 | Title: | CVE-2016-10700 on Ubuntu 18.10 (cosmic) - medium. | Description: | auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-2313.
| Family: | unix | Class: | vulnerability | Status: | | Reference(s): | CVE-2016-10700
| Platform(s): | Ubuntu 18.10
| Product(s): | | Definition Synopsis | Ubuntu 18.10 (cosmic) is installed. AND NOT cacti package in cosmic, while related to the CVE in some way, is not affected.
|
|