Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-48538

Disclosure Date: August 22, 2023 (last updated October 08, 2023)
In Cacti 1.2.19, there is an authentication bypass in the web login functionality because of improper validation in the PHP code: cacti_ldap_auth() allows a zero as the password.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0