DEBIAN-CVE-2009-4112
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 30 Nov 2009, 21:30
Last modified:27 May 2026, 11:00
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
30 Nov 2009, 21:30
Published
Vulnerability first disclosed
27 May 2026, 11:00
Last Modified
Vulnerability information updated
Description
Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.
Affected Systems
- debian•cacti
< 1.2.1+ds1-1 | < 1.2.1+ds1-1 | < 1.2.1+ds1-1 | < 1.2.1+ds1-1