Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie

Type deb

Namespace debian

Name cacti

Version 1.2.16+ds1-2+deb11u2

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1.2.16+ds1-2+deb11u4

Latest_non_vulnerable_version 1.2.30+ds1-3

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-34z4-1zqk-afcm

vulnerability_id VCID-34z4-1zqk-afcm

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39515

reference_id

reference_type

scores

value	0.00258
scoring_system	epss
scoring_elements	0.4919
published_at	2026-05-14T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49131
published_at	2026-04-02T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49181
published_at	2026-04-11T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49155
published_at	2026-04-12T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.4916
published_at	2026-04-13T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49207
published_at	2026-04-16T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49205
published_at	2026-04-18T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49174
published_at	2026-04-21T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49173
published_at	2026-04-26T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.4913
published_at	2026-04-29T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49046
published_at	2026-05-05T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.4911
published_at	2026-05-07T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49138
published_at	2026-05-09T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49086
published_at	2026-05-11T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49114
published_at	2026-05-12T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49161
published_at	2026-04-04T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49113
published_at	2026-04-07T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49167
published_at	2026-04-08T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49164
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_id

CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-25T14:25:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_url

https://www.debian.org/security/2023/dsa-5550

reference_id

dsa-5550

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-25T14:25:41Z/

url

https://www.debian.org/security/2023/dsa-5550

reference_url

https://github.com/Cacti/cacti/security/advisories/GHSA-hrg9-qqqx-wc4h

reference_id

GHSA-hrg9-qqqx-wc4h

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-25T14:25:41Z/

url

https://github.com/Cacti/cacti/security/advisories/GHSA-hrg9-qqqx-wc4h

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-25T14:25:41Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00018.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_id

WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-25T14:25:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

reference_id

WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-25T14:25:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39515

risk_score 2.8

exploitability 0.5

weighted_severity 5.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-34z4-1zqk-afcm

url VCID-5ykb-6nvx-k3e4

vulnerability_id VCID-5ykb-6nvx-k3e4

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39362

reference_id

reference_type

scores

value	0.87228
scoring_system	epss
scoring_elements	0.99443
published_at	2026-04-02T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99445
published_at	2026-04-04T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99446
published_at	2026-04-07T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99447
published_at	2026-04-09T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99448
published_at	2026-04-11T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99449
published_at	2026-04-13T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99452
published_at	2026-04-18T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99453
published_at	2026-04-21T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99454
published_at	2026-04-29T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99455
published_at	2026-04-26T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99456
published_at	2026-05-07T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99458
published_at	2026-05-11T12:55:00Z

value	0.87228
scoring_system	epss
scoring_elements	0.99459
published_at	2026-05-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url

http://packetstormsecurity.com/files/175029/Cacti-1.2.24-Command-Injection.html

reference_id

Cacti-1.2.24-Command-Injection.html

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

http://packetstormsecurity.com/files/175029/Cacti-1.2.24-Command-Injection.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_id

CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/51740.txt
reference_id	CVE-2023-39362
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/51740.txt

reference_url

https://www.debian.org/security/2023/dsa-5550

reference_id

dsa-5550

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

https://www.debian.org/security/2023/dsa-5550

reference_url

https://github.com/Cacti/cacti/security/advisories/GHSA-g6ff-58cj-x3cp

reference_id

GHSA-g6ff-58cj-x3cp

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

https://github.com/Cacti/cacti/security/advisories/GHSA-g6ff-58cj-x3cp

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00018.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_id

WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

reference_id

WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-27T20:32:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39362

risk_score 10.0

exploitability 2.0

weighted_severity 6.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5ykb-6nvx-k3e4

url VCID-a8j1-24bw-gudu

vulnerability_id VCID-a8j1-24bw-gudu

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39364

reference_id

reference_type

scores

value	0.00166
scoring_system	epss
scoring_elements	0.3773
published_at	2026-04-02T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37755
published_at	2026-04-04T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37633
published_at	2026-04-07T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37684
published_at	2026-04-08T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37697
published_at	2026-04-09T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37711
published_at	2026-04-11T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37676
published_at	2026-04-12T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37648
published_at	2026-04-13T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37695
published_at	2026-04-16T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37678
published_at	2026-04-18T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37616
published_at	2026-04-21T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37379
published_at	2026-04-24T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37359
published_at	2026-04-26T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.3727
published_at	2026-04-29T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37153
published_at	2026-05-05T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.3722
published_at	2026-05-07T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.3724
published_at	2026-05-09T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37159
published_at	2026-05-11T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37131
published_at	2026-05-12T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37209
published_at	2026-05-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39364

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a8j1-24bw-gudu

url VCID-huf2-qwju-6bf2

vulnerability_id VCID-huf2-qwju-6bf2

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39365

reference_id

reference_type

scores

value	0.0017
scoring_system	epss
scoring_elements	0.3784
published_at	2026-05-14T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38281
published_at	2026-04-16T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.3826
published_at	2026-04-18T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38196
published_at	2026-04-21T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38031
published_at	2026-04-24T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38007
published_at	2026-04-26T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.37911
published_at	2026-04-29T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.37795
published_at	2026-05-05T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.37863
published_at	2026-05-07T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.37876
published_at	2026-05-09T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.37788
published_at	2026-05-11T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.37763
published_at	2026-05-12T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38327
published_at	2026-04-02T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38352
published_at	2026-04-04T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38217
published_at	2026-04-07T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38267
published_at	2026-04-08T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38275
published_at	2026-04-09T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38294
published_at	2026-04-11T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38258
published_at	2026-04-12T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38234
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_id

CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T17:26:49Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_url

https://www.debian.org/security/2023/dsa-5550

reference_id

dsa-5550

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T17:26:49Z/

url

https://www.debian.org/security/2023/dsa-5550

reference_url

https://github.com/Cacti/cacti/security/advisories/GHSA-v5w7-hww7-2f22

reference_id

GHSA-v5w7-hww7-2f22

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T17:26:49Z/

url

https://github.com/Cacti/cacti/security/advisories/GHSA-v5w7-hww7-2f22

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T17:26:49Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00018.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_id

WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T17:26:49Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

reference_id

WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T17:26:49Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39365

risk_score 2.0

exploitability 0.5

weighted_severity 4.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-huf2-qwju-6bf2

url VCID-sb43-hapb-1uf2

vulnerability_id VCID-sb43-hapb-1uf2

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39357

reference_id

reference_type

scores

value	0.03246
scoring_system	epss
scoring_elements	0.87071
published_at	2026-04-02T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.8709
published_at	2026-04-04T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87083
published_at	2026-04-07T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87103
published_at	2026-04-08T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87111
published_at	2026-04-09T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87124
published_at	2026-04-11T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87119
published_at	2026-04-12T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87114
published_at	2026-04-13T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.8713
published_at	2026-04-16T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87134
published_at	2026-04-18T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87131
published_at	2026-04-21T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.8715
published_at	2026-04-24T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87156
published_at	2026-04-26T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87157
published_at	2026-04-29T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87177
published_at	2026-05-05T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87193
published_at	2026-05-07T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87211
published_at	2026-05-09T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87206
published_at	2026-05-11T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87222
published_at	2026-05-12T12:55:00Z

value	0.03246
scoring_system	epss
scoring_elements	0.87257
published_at	2026-05-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39357

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sb43-hapb-1uf2

url VCID-vsjt-qjyw-hbfs

vulnerability_id VCID-vsjt-qjyw-hbfs

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39359

reference_id

reference_type

scores

value	0.04724
scoring_system	epss
scoring_elements	0.89498
published_at	2026-05-14T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89405
published_at	2026-04-21T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89406
published_at	2026-04-18T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89422
published_at	2026-04-24T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89427
published_at	2026-04-26T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89428
published_at	2026-04-29T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89436
published_at	2026-05-05T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89455
published_at	2026-05-07T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89468
published_at	2026-05-11T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89478
published_at	2026-05-12T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89353
published_at	2026-04-02T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89365
published_at	2026-04-04T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89368
published_at	2026-04-07T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89385
published_at	2026-04-08T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89388
published_at	2026-04-09T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89397
published_at	2026-04-11T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.89394
published_at	2026-04-12T12:55:00Z

value	0.04724
scoring_system	epss
scoring_elements	0.8939
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_id

CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-26T19:20:26Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFH3J2WVBKY4ZJNMARVOWJQK6PSLPHFH/

reference_url

https://www.debian.org/security/2023/dsa-5550

reference_id

dsa-5550

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-26T19:20:26Z/

url

https://www.debian.org/security/2023/dsa-5550

reference_url

https://github.com/Cacti/cacti/security/advisories/GHSA-q4wh-3f9w-836h

reference_id

GHSA-q4wh-3f9w-836h

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-26T19:20:26Z/

url

https://github.com/Cacti/cacti/security/advisories/GHSA-q4wh-3f9w-836h

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_id

WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-26T19:20:26Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOQFYGLZBAWT4AWNMO7DU73QXWPXTCKH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

reference_id

WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-26T19:20:26Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZGB2UXJEUYWWA6IWVFQ3ZTP22FIHMGN/

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39359

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vsjt-qjyw-hbfs

url VCID-ws4h-295a-9qgx

vulnerability_id VCID-ws4h-295a-9qgx

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39516

reference_id

reference_type

scores

value	0.00284
scoring_system	epss
scoring_elements	0.51728
published_at	2026-04-02T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51754
published_at	2026-04-04T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51714
published_at	2026-04-07T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51768
published_at	2026-04-08T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51765
published_at	2026-05-09T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51815
published_at	2026-04-11T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51794
published_at	2026-04-12T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51778
published_at	2026-04-13T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51819
published_at	2026-04-16T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51826
published_at	2026-04-18T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51807
published_at	2026-04-21T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51757
published_at	2026-04-24T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51763
published_at	2026-04-26T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51721
published_at	2026-05-07T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.5167
published_at	2026-05-05T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51727
published_at	2026-05-11T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51752
published_at	2026-05-12T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.51832
published_at	2026-05-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39516

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39516

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ws4h-295a-9qgx

url VCID-ypan-57sx-vyam

vulnerability_id VCID-ypan-57sx-vyam

summary Multiple vulnerabilities have been discovered in Cacti, the worst of which can lead to privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-39361

reference_id

reference_type

scores

value	0.92278
scoring_system	epss
scoring_elements	0.99717
published_at	2026-04-02T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99718
published_at	2026-04-04T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99719
published_at	2026-04-13T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.9972
published_at	2026-04-18T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99722
published_at	2026-04-21T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99723
published_at	2026-04-24T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99725
published_at	2026-04-29T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99726
published_at	2026-05-05T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99727
published_at	2026-05-09T12:55:00Z

value	0.92278
scoring_system	epss
scoring_elements	0.99728
published_at	2026-05-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39361

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39362

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39364

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39365

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39516

reference_url	https://security.gentoo.org/glsa/202412-02
reference_id	GLSA-202412-02
reference_type
scores
url	https://security.gentoo.org/glsa/202412-02

reference_url	https://usn.ubuntu.com/6720-1/
reference_id	USN-6720-1
reference_type
scores
url	https://usn.ubuntu.com/6720-1/

fixed_packages

url	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-cqr3-wwhj-tyck

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

vulnerability	VCID-zxu5-equ9-1kam

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4e5y-1s19-r7g7

vulnerability	VCID-pxqa-nkv3-jqfs

vulnerability	VCID-xkkm-ss3p-1udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.25%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.25%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-2%3Fdistro=trixie

url	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
purl	pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie

aliases CVE-2023-39361

risk_score 1.6

exploitability 2.0

weighted_severity 0.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ypan-57sx-vyam

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u2%3Fdistro=trixie

Package Instance