Cacti Unauthenticated Command Injection (CVE-2022-46169)
Description
Due to an authorization bypass vulnerability in the remote agent handling in Cacti, au unauthenticated attacker can execute arbitrary OS commands with a specially crafted HTTP request.
Remediation
Upgrade to the latest version of Cacti