NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-40941

Summary	Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have a package import signature validation bypass allows which allows self-signed packages. This issue has been fixed in version 1.2.31.
Publication Date	June 26, 2026, 8:17 a.m.
Registration Date	June 27, 2026, 4:31 a.m.
Last Update	June 27, 2026, 1:09 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/Cacti/cacti/pull/7054	security-advisories@github.com
2	https://github.com/Cacti/cacti/releases/tag/release%2F1.2.31	security-advisories@github.com
3	https://github.com/Cacti/cacti/security/advisories/GHSA-274c-97hj-pv2v	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-347	デジタル署名の不適切な検証	https://cwe.mitre.org/data/definitions/347.html