Cacti Crisis: Severe Vulnerability Exploited in the Wild

PUBLISHED:
16 January 2023

Cacti Crisis: Severe Vulnerability Exploited in the Wild

A severe vulnerability in the Cacti open-source web-based monitoring solution, identified as CVE-2022-46169 with a CVSS score of 9.8, is being actively exploited in the wild. The vulnerability, which is a combination of authentication bypass and command injection, allows an unauthenticated user to execute arbitrary code on affected versions of the software. A significant number of internet-exposed Cacti servers have been found to be vulnerable to this exploit.

Affected Versions

• Cacti versions 1.2.22 and below 

Mitigation

Users are strongly advised to test and upgrade to Cacti version 1.2.23 or 1.3.0 (or later), which have been patched to address this vulnerability. Additionally, it is recommended to regularly monitor the security of your systems and to apply security updates as soon as they become available.

More Information

• Cacti Patched CVE-2022-46169 Critical RCE Vulnerability – https://socradar.io/cacti-patched-cve-2022-46169-critical-rce-vulnerability/
• CVE-2022-46169 Details – https://nvd.nist.gov/vuln/detail/CVE-2022-46169