Two security vulnerabilities have been discovered in Cacti, a web interface for graphing of monitoring systems, which could result in unauthenticated command injection or LDAP authentication bypass. For the stable distribution (bullseye), these problems have been fixed in version 1.2.16+ds1-2+deb11u1. We recommend that you upgrade your cacti packages. For the detailed security status of cacti please refer to its security tracker page at: https://security-tracker.debian.org/tracker/cacti
Two security vulnerabilities have been discovered in Cacti, a web interface for graphing of monitoring systems, which could result in unauthenticated command injection or LDAP authentication bypass.
For the stable distribution (bullseye), these problems have been fixed in version 1.2.16+ds1-2+deb11u1.
We recommend that you upgrade your cacti packages.
For the detailed security status of cacti please refer to its security tracker page at: https://security-tracker.debian.org/tracker/cacti