CVE-2024-43365

Summary

CVE-2024-43365 is a vulnerability affecting the open-source performance and fault management framework, Cacti. The issue lies in the `consolenewsection` parameter, which is not properly sanitized during the saving of external links in the `links.php` file. This parameter is subsequently stored in the database and reflected back to users in `index.php`, creating an opportunity for stored XSS attacks. Users with the ability to create external links can manipulate the "consolenewsection" parameter in the HTTP post request to execute malicious scripts. XSS attacks occur when applications fail to validate or escape untrusted user input, resulting in the injection of malicious code into web pages. Users are advised to upgrade to Cacti version 1.2.28 to address this vulnerability, as there are currently no known workarounds.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.