Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP2 package cacti, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2020-35701 — CVSS 8.8 (high): An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in data_debug.php allows remote authenticated…
CVE-2020-14424 — CVSS 6.1 (medium): Cacti before 1.2.18 allows remote attackers to trigger XSS via template import for the midwinter theme.