Oval Definition:oval:org.opensuse.security:def:20142708
Revision Date:2022-06-30Version:1
Title:CVE-2014-2708
Description:

Multiple SQL injection vulnerabilities in graph_xport.php in Cacti 0.8.7g, 0.8.8b, and earlier allow remote attackers to execute arbitrary SQL commands via the (1) graph_start, (2) graph_end, (3) graph_height, (4) graph_width, (5) graph_nolegend, (6) print_source, (7) local_graph_id, or (8) rra_id parameter.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-2708
Mitre CVE-2014-2708
SUSE CVE-2014-2708
openSUSE-SU-2014:0600-1
openSUSE-SU-2014:0600-1
Platform(s):openSUSE 12.3 Update
openSUSE 13.1
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • cacti-0.8.8b-4.1 is installed
  • OR cacti-spine-0.8.8b-4.4.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • cacti-1.1.38-2 is installed
  • OR cacti-doc-1.1.38-2 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • cacti-0.8.8h-1.2 is installed
  • OR cacti-doc-0.8.8h-1.2 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • cacti-1.1.38-2.1 is installed
  • OR cacti-doc-1.1.38-2.1 is installed
    • BACK