Vulnerability Details CVE-2021-40643
EyesOfNetwork before 07-07-2021 has a Remote Code Execution vulnerability on the mail options configuration page. In the location of the "sendmail" application in the "cacti" configuration page (by default/usr/sbin/sendmail) it is possible to execute any command, which will be executed when we make a test of the configuration ("send test mail").
Exploit prediction scoring system (EPSS) score
EPSS Score 0.032
EPSS Ranking 86.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2021-40643
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:4.2-3
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:4.3-0
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.0
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.0-0
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.1
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.1-0
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.2-0
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-0
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-1
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-10
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-11
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-2
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-3
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-4
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-5
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-6
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-7
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-8
-
cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.3-9