Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-6ze5-dqdn-ykg3
Vulnerability ID VCID-6ze5-dqdn-ykg3
Aliases CVE-2024-45598
Summary Cacti is an open source performance and fault management framework. Prior to 1.2.29, an administrator can change the `Poller Standard Error Log Path` parameter in either Installation Step 5 or in Configuration->Settings->Paths tab to a local file inside the server. Then simply going to Logs tab and selecting the name of the local file will show its content on the web UI. This vulnerability is fixed in 1.2.29.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00087 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
epss 0.00087 https://api.first.org/data/v1/epss?cve=CVE-2024-45598
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2024-45598
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45598
1094574 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1094574
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.19758
EPSS Score 0.00063
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T16:37:45.447336+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.0.0