CVE-2016-10700

auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-2313.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 72%
VendorProductVersion
cacticacti
𝑥
< 1.0.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
cacti
bullseye
1.2.16+ds1-2+deb11u3
fixed
bullseye (security)
1.2.16+ds1-2+deb11u4
fixed
bookworm
1.2.24+ds1-1+deb12u4
fixed
bookworm (security)
1.2.24+ds1-1+deb12u2
fixed
sid
1.2.28+ds1-2
fixed
trixie
1.2.28+ds1-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cacti
cosmic
not-affected
bionic
not-affected
artful
not-affected
zesty
ignored
xenial
Fixed 0.8.8f+ds1-4ubuntu4.16.04.2
released
trusty
Fixed 0.8.8b+dfsg-5ubuntu0.2
released
Common Weakness Enumeration
References
http://bugs.cacti.net/view.php?id=2697
http://www.cacti.net/release_notes_1_0_0.php
https://github.com/Cacti/cacti/commit/69983495cd41bf0903fe02baeef84b1fa85f2846
https://web.archive.org/web/20160817090458/http://bugs.cacti.net/view.php?id=2697
http://bugs.cacti.net/view.php?id=2697
http://www.cacti.net/release_notes_1_0_0.php
https://github.com/Cacti/cacti/commit/69983495cd41bf0903fe02baeef84b1fa85f2846
https://web.archive.org/web/20160817090458/http://bugs.cacti.net/view.php?id=2697