Alerts This Week
Warning Icon 1 975
Alerts This Week
Warning Icon 1 975

openSUSE Cacti Major Security Patch openSUSE-SU-2026-0149-2

opensuse
Calendar Grey April 24, 2026
Dist Opensuse Esm H88
A critical update for openSUSE Cacti resolves multiple vulnerabilities, enhancing security and functionality.
An update that solves 10 vulnerabilities and has one errata is now available.

Description

This update for cacti, cacti-spine fixes the following issues:

cacti 1.2.30:

- Unable to add new users

- When using Automation Rules, specifying graph criteria may cause issues

- When transferring a system from a backup if the poller has not run

recently rrdtool issues are found

- When translating, quotes may cause incorrect text to appear

- When using Boost for the first time, warnings may appear

- When refreshing forms, items may be checked incorrectly by xmacan

cacti 1.2.29:

- CVE-2025-22604 GHSA-c5j8-jxj3-hh36 - Authenticated RCE via multi-line

SNMP responses (bsc#1236488)

- CVE-2025-24368 GHSA-f9c7-7rc3-574c - SQL Injection vulnerability when

using tree rules through Automation API (bsc#1236490)

- CVE-2024-54145 GHSA-fh3x-69rr-qqpp - SQL Injection vulnerability when

request automation devices (bsc#1236487)

- CVE-2025-24367 GHSA-fxrq-fr7h-9rqq - Arbitrary File Creation leading

to RCE...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory SQL Injection critical remote code execution Cacti OpenSUSE

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP7:

zypper in -t patch openSUSE-2026-148=1

Package List

- openSUSE Backports SLE-15-SP7 (noarch):

cacti-1.2.30-bp157.2.3.1

References

https://www.suse.com/security/cve/CVE-2024-43362.html

https://www.suse.com/security/cve/CVE-2024-43363.html

https://www.suse.com/security/cve/CVE-2024-43364.html

https://www.suse.com/security/cve/CVE-2024-43365.html

https://www.suse.com/security/cve/CVE-2024-45598.html

https://www.suse.com/security/cve/CVE-2024-54145.html

https://www.suse.com/security/cve/CVE-2024-54146.html

https://www.suse.com/security/cve/CVE-2025-22604.html

https://www.suse.com/security/cve/CVE-2025-24367.html

https://www.suse.com/security/cve/CVE-2025-24368.html

https://bugzilla.suse.com/1231027

https://bugzilla.suse.com/1231369

https://bugzilla.suse.com/1231370

https://bugzilla.suse.com/1231371

https://bugzilla.suse.com/1231372

https://bugzilla.suse.com/1236482

https://bugzilla.suse.com/1236486

https://bugzilla.suse.com/1236487

https://bugzilla.suse.com/1236488

https://bugzilla.suse.com/1236489

https://bugzilla.suse.com/1236490

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:0148-1
Rating: critical
Affected Products: openSUSE Backports SLE-15-SP7 le.

Topics%20covered

Topics Covered

security advisory SQL Injection critical remote code execution Cacti OpenSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here