Vulnerability Name:

CVE-2020-7106 (CCN-174806)

Assigned:2020-01-15
Published:2020-01-15
Updated:2022-05-24
Summary:Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displayed by $header to trigger the XSS).
CVSS v3 Severity:6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.9 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-79
Vulnerability Consequences:Cross-Site Scripting
References:Source: MITRE
Type: CNA
CVE-2020-7106

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0272

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0284

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0558

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0565

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0654

Source: XF
Type: UNKNOWN
cacti-cve20207106-xss(174806)

Source: CCN
Type: Cacti GIT Repository
Vulnerability report: Lack of escaping on some pages can lead to XSS exposure #3191

Source: MISC
Type: Exploit, Third Party Advisory
https://github.com/Cacti/cacti/issues/3191

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20200118 [SECURITY] [DLA 2069-1] cacti security update

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20220329 [SECURITY] [DLA 2965-1] cacti security update

Source: FEDORA
Type: Mailing List, Patch, Third Party Advisory
FEDORA-2020-0fc6dd0fd2

Source: FEDORA
Type: Mailing List, Patch, Third Party Advisory
FEDORA-2020-90f1c8229e

Source: GENTOO
Type: Third Party Advisory
GLSA-202003-40

Source: CCN
Type: Cacti Web site
Cacti

Vulnerable Configuration:Configuration 1:
  • cpe:/a:cacti:cacti:*:*:*:*:*:*:*:* (Version < 1.2.9)

  • Configuration 2:
  • cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

  • Configuration 3:
  • cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*
  • OR cpe:/a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*

  • Configuration 4:
  • cpe:/a:suse:package_hub:-:*:*:*:*:*:*:*
  • AND
  • cpe:/o:suse:linux_enterprise:12.0:*:*:*:*:*:*:*

  • Configuration 5:
  • cpe:/o:fedoraproject:fedora:30:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  • OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:7.0:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20207106
    V
    CVE-2020-7106
    2022-06-30
    oval:org.opensuse.security:def:93605
    P
    (Moderate)
    2022-05-05
    oval:org.opensuse.security:def:112039
    P
    cacti-1.2.18-1.2 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:64643
    P
    Security update for kernel-firmware (Low)
    2021-12-30
    oval:org.opensuse.security:def:64623
    P
    Security update for speex (Moderate)
    2021-12-01
    oval:org.opensuse.security:def:74745
    P
    Security update for the Linux Kernel (Important)
    2021-11-16
    oval:org.opensuse.security:def:64793
    P
    Security update for qemu (Important)
    2021-11-03
    oval:org.opensuse.security:def:64585
    P
    Security update for libcryptopp (Moderate)
    2021-10-06
    oval:org.opensuse.security:def:74735
    P
    Security update for go1.16 (Important)
    2021-10-06
    oval:org.opensuse.security:def:105594
    P
    cacti-1.2.18-1.2 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:63246
    P
    xen-4.12.0_12-1.1 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:64755
    P
    Security update for spectre-meltdown-checker (Moderate)
    2021-08-27
    oval:org.opensuse.security:def:64558
    P
    Security update for fetchmail (Moderate)
    2021-08-20
    oval:org.opensuse.security:def:100318
    P
    (Important)
    2021-08-17
    oval:org.opensuse.security:def:93574
    P
    (Important)
    2021-08-12
    oval:org.opensuse.security:def:63449
    P
    postgresql-test-12-2.2 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63369
    P
    redis-6.0.10-1.7.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63331
    P
    grub2-x86_64-xen-2.04-20.4 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:62743
    P
    fontforge-20200314-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62750
    P
    gnome-autoar-devel-0.2.3-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62828
    P
    rtkit-0.11+git.20130926-1.34 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:63038
    P
    perl-doc-5.26.1-15.87 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62747
    P
    gd-2.2.5-9.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62835
    P
    vorbis-tools-1.4.0-1.53 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62775
    P
    libass-devel-0.14.0-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62832
    P
    texlive-collection-basic-2017.135.svn41616-9.12.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100311
    P
    (Moderate)
    2021-07-20
    oval:org.opensuse.security:def:62873
    P
    perl-PerlMagick-7.0.7.34-1.6 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62860
    P
    libtidy-devel-5.4.0-1.34 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62870
    P
    perl-Config-IniFiles-2.94-1.23 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:63534
    P
    freerdp-2.0.0~rc2-1.8 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:64521
    P
    Security update for qemu (Important)
    2021-06-08
    oval:org.opensuse.security:def:62866
    P
    openldap2-devel-32bit-2.4.46-7.10 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:100287
    P
    (Important)
    2021-06-02
    oval:org.opensuse.security:def:64500
    P
    Recommended update for grub2 (Moderate)
    2021-05-19
    oval:org.opensuse.security:def:64681
    P
    Security update for p7zip (Moderate)
    2021-05-04
    oval:org.opensuse.security:def:64483
    P
    Security update for webkit2gtk3 (Important)
    2021-04-29
    oval:org.opensuse.security:def:63076
    P
    openldap2-2.4.46-9.3.1 on GA media (Moderate)
    2021-04-29
    oval:org.opensuse.security:def:93598
    P
    (Important)
    2021-03-24
    oval:org.opensuse.security:def:64670
    P
    Security update for nghttp2 (Important)
    2021-03-24
    oval:org.opensuse.security:def:74697
    P
    Security update for git (Important)
    2021-03-09
    oval:org.opensuse.security:def:64277
    P
    Security update for gcc7 (Moderate)
    2020-12-10
    oval:org.opensuse.security:def:62953
    P
    gradle-4.4.1-1.87 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62898
    P
    dpkg-1.19.0.4-2.30 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63596
    P
    libwmf-0_2-7-0.2.8.4-2.30 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63572
    P
    enigmail-2.0.9-3.13.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:25072
    P
    Security update for aspell (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64375
    P
    libpython2_7-1_0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:74868
    P
    Security update for cacti, cacti-spine (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25486
    P
    Security update for openssl-1_1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:74612
    P
    Security update for dpdk (Critical)
    2020-12-01
    oval:org.opensuse.security:def:25058
    P
    Security update for gdb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63719
    P
    Security update for netpbm (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25790
    P
    Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:25134
    P
    Security update for apache2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:64291
    P
    lftp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25635
    P
    Security update for tigervnc (Critical)
    2020-12-01
    oval:org.opensuse.security:def:26474
    P
    Security update for znc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63910
    P
    Security update for ovmf (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25345
    P
    Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:64413
    P
    libzypp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26507
    P
    Security update for cacti, cacti-spine (Important)
    2020-12-01
    oval:org.opensuse.security:def:25059
    P
    Security update for apache2-mod_auth_openidc (Important)
    2020-12-01
    oval:org.opensuse.security:def:64154
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:25060
    P
    Security update for libssh2_org (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25400
    P
    Security update for bcm43xx-firmware (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25792
    P
    Security update for libvirt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25136
    P
    Security update for clamav (Important)
    2020-12-01
    oval:org.opensuse.security:def:64376
    P
    libpython3_6m1_0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25637
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:63948
    P
    Security update for texlive (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25834
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25262
    P
    Security update for spamassassin (Important)
    2020-12-01
    oval:org.opensuse.security:def:25688
    P
    Security update for systemd (Important)
    2020-12-01
    oval:org.opensuse.security:def:26509
    P
    Security update for cacti, cacti-spine (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25061
    P
    Security update for libseccomp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64239
    P
    dhcp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25402
    P
    Security update for libvirt (Important)
    2020-12-01
    oval:org.opensuse.security:def:25776
    P
    Security update for flash-player (Critical)
    2020-12-01
    oval:org.opensuse.security:def:64414
    P
    libzzip-0-13 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25070
    P
    Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:64290
    P
    less on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:74830
    P
    Security update for cacti, cacti-spine (Important)
    2020-12-01
    oval:org.opensuse.security:def:25484
    P
    Security update for libqt4 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25836
    P
    Security update for LibreOffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63681
    P
    Security update for qemu (Important)
    2020-12-01
    oval:org.opensuse.security:def:25264
    P
    Security update for memcached (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25690
    P
    Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:26472
    P
    Security update for Chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:63825
    P
    Security update for ucode-intel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25343
    P
    Security update for kernel-firmware (Important)
    2020-12-01
    oval:org.opensuse.security:def:25778
    P
    Security update for mariadb (Important)
    2020-12-01
    oval:org.opensuse.security:def:64398
    P
    libvirt-libs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:110530
    P
    Security update for cacti, cacti-spine (Moderate)
    2020-05-11
    oval:org.opensuse.security:def:110492
    P
    Security update for cacti, cacti-spine (Important)
    2020-04-27
    oval:org.opensuse.security:def:110407
    P
    Security update for cacti, cacti-spine (Important)
    2020-03-01
    oval:com.ubuntu.disco:def:202071060000000
    V
    CVE-2020-7106 on Ubuntu 19.04 (disco) - medium.
    2020-01-16
    oval:com.ubuntu.bionic:def:202071060000000
    V
    CVE-2020-7106 on Ubuntu 18.04 LTS (bionic) - medium.
    2020-01-16
    oval:com.ubuntu.xenial:def:202071060000000
    V
    CVE-2020-7106 on Ubuntu 16.04 LTS (xenial) - medium.
    2020-01-16
    BACK
    cacti cacti *
    debian debian linux 8.0
    debian debian linux 9.0
    opensuse leap 15.1
    opensuse backports sle 15.0 sp1
    suse package hub -
    suse linux enterprise 12.0
    fedoraproject fedora 30
    fedoraproject fedora 31
    fedoraproject extra packages for enterprise linux 8.0
    fedoraproject extra packages for enterprise linux 9.0
    fedoraproject extra packages for enterprise linux 7.0