CVE-2017-12066

Public on 2017-08-01

Modified on 2017-08-31

Description

Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancel_url variable. NOTE: this vulnerability exists because of an incomplete fix (lack of the htmlspecialchars ENT_QUOTES flag) for CVE-2017-11163.

Severity

Medium

See what this means

CVSS v3 Base Score

5.4

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory
Amazon Linux 1	cacti	2017-08-17 18:36	ALAS-2017-874

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv2	3.5	AV:N/AC:M/Au:S/C:N/I:P/A:N
Amazon Linux	CVSSv3	5.4	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
NVD	CVSSv2	3.5	AV:N/AC:M/Au:S/C:N/I:P/A:N
NVD	CVSSv3	5.4	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

References

Red Hat: CVE-2017-12066 Mitre: CVE-2017-12066 FAQs regarding Amazon Linux ALAS/CVE Severity