CVE-2023-30534— Insecure Deserialization in Cacti
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-30534
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insecure Deserialization in Cacti
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cacti is an open source operational monitoring and fault management framework. There are two instances of insecure deserialization in Cacti version 1.2.24. While a viable gadget chain exists in Cacti’s vendor directory (phpseclib), the necessary gadgets are not included, making them inaccessible and the insecure deserializations not exploitable. Each instance of insecure deserialization is due to using the unserialize function without sanitizing the user input. Cacti has a “safe” deserialization that attempts to sanitize the content and check for specific values before calling unserialize, but it isn’t used in these instances. The vulnerable code lies in graphs_new.php, specifically within the host_new_graphs_save function. This issue has been addressed in version 1.2.25. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
可信数据的反序列化
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cacti和ecto 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cacti是Cacti团队的一套开源的网络流量监测和分析工具。该工具通过snmpget来获取数据,使用RRDtool绘画图形进行分析,并提供数据和用户管理功能。 Cacti 1.2.25之前版本存在代码问题漏洞,该漏洞源于使用反序列化函数而没有清理用户输入,存在不安全反序列化实例。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2023-30534
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Cacti is an open source operational monitoring and fault management framework. There are two instances of insecure deserialization in Cacti version 1.2.24. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-30534.yaml | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-30534
请登录查看更多情报信息。
- https://github.com/Cacti/cacti/security/advisories/GHSA-77rf-774j-6h3px_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2023-30534
Same Patch Batch · Cacti · 2023-09-05 · 17 CVEs total
| CVE-2023-39361 | 9.8 CRITICAL | Unauthenticated SQL Injection in graph_view.php in Cacti |
| CVE-2023-39359 | 8.8 HIGH | Authenticated SQL injection vulnerability in graphs.php in Cacti |
| CVE-2023-39358 | 8.8 HIGH | Authenticated SQL injection vulnerability in reports_user.php in Cacti |
| CVE-2023-39357 | 8.8 HIGH | A Defect in sql_save() Causes Multiple SQL Injection Vulnerabilities in Cacti |
| CVE-2023-31132 | 7.8 HIGH | Cacti Privilege Escalation |
| CVE-2023-39362 | 7.2 HIGH | Authenticated command injection in SNMP options of a Device |
| CVE-2023-39515 | 6.1 MEDIUM | Stored Cross-site Scripting on data_debug.php datasource path view in Cacti |
| CVE-2023-39514 | 6.1 MEDIUM | Stored Cross-site Scripting on graphs.php data template formated name view in Cacti |
| CVE-2023-39513 | 6.1 MEDIUM | Stored Cross-site Scripting on host.php verbose data-query debug view in Cacti |
| CVE-2023-39512 | 6.1 MEDIUM | Stored Cross-site Scripting on data_sources.php device name view in Cacti |
| CVE-2023-39510 | 6.1 MEDIUM | Stored Cross-site Scripting in reports_admin.php through Device-Name in 'select' input in |
| CVE-2023-39366 | 6.1 MEDIUM | Stored Cross-site Scripting in data_sources.php through Device-Name in 'select' input in C |
| CVE-2023-39360 | 6.1 MEDIUM | Reflected Cross-site Scripting in graphs_new.php in Cacti |
| CVE-2023-39516 | 6.1 MEDIUM | Stored Cross-Site-Scripting on data_sources.php debug html-block in Cacti |
| CVE-2023-39365 | 4.6 MEDIUM | Unchecked regular expressions can lead to SQL Injection and data leakage in Cacti |
| CVE-2023-39364 | 3.5 LOW | Open redirect in change password functionality in Cacti |
IV. Related Vulnerabilities
Same product: cacti
Same vendor: Cacti
Same weakness: CWE-502
- CVE-2026-44126
Insecure deserialization - CVE-2026-5127
User Frontend: AI Powered Frontend Posting, User Directory, - CVE-2026-41586
ObjectInputStream.readObject() without ObjectInputFilter in - CVE-2026-34084
PhpSpreadsheet SSRF and RCE via PHP stream wrappers in IOFac - CVE-2026-7712
MindsDB Pickle pickle.loads deserialization
V. Comments for CVE-2023-30534
No comments yet