Detections
Analytics
FreeBSD : cacti -- multiple vulnerabilities (db570002-ce06-11e7-804e-c85b763a2f96)
high Nessus Plugin ID 104733
Language:
Synopsis
The remote FreeBSD host is missing a security-related update.Description
cacti reports :Changelog
issue#1057: CVE-2017-16641 - Potential vulnerability in RRDtool functions
issue#1066: CVE-2017-16660 in remote_agent.php logging function
issue#1066: CVE-2017-16661 in view log file
issue#1071: CVE-2017-16785 in global_session.php Reflection XSS
Solution
Update the affected package.See Also
Plugin Details
Severity: High
ID: 104733
File Name: freebsd_pkg_db570002ce0611e7804ec85b763a2f96.nasl
Version: 3.6
Type: local
Family: FreeBSD Local Security Checks
Published: 11/22/2017
Updated: 1/4/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 9
Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS v3
Risk Factor: High
Base Score: 7.2
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Information
CPE: p-cpe:/a:freebsd:freebsd:cacti, cpe:/o:freebsd:freebsd
Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info
Patch Publication Date: 11/20/2017
Vulnerability Publication Date: 11/1/2017
Reference Information
CVE: CVE-2017-16641, CVE-2017-16660, CVE-2017-16661, CVE-2017-16785