Patch your Cacti monitoring server due to SQL Injection vulnerability
It has been years since I have used Cacti, but are any of you using it for monitoring? There is a new SQL injection vulnerability that has been found with a CVSS rating of 8.8 out of 10.
Cacti is used to monitor network devices, pull bandwidth utilization, CPU, memory, and other data from routers, switches and even servers.
There is an updated version of Cacti containing a patch: Security Overview · Cacti/cacti · GitHub