Vulnerability DatabaseCVE-2026-40082
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2026-40082
Published:June 25, 2026
Updated:June 29, 2026
Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have missing session_regenerate_id() after login, leading to Session Fixation. session_regenerate_id() is NOT called after successful login. The login flow at auth_login.php:203-207 directly sets $_SESSION[SESS_USER_ID] without rotating the session ID. The session cookie configuration is otherwise good (httponly=true, samesite=Strict, secure=true for HTTPS at include/global.php:513-537), but these do not prevent session fixation via same-site vectors. This issue has been fixed in version 1.2.31.
Affected Packages
https://github.com/Cacti/cacti.git (GITHUB):
Affected version(s) >=release/1.0.0 <release/1.2.31
Fix Suggestion:
Update to version release/1.2.31
Related Resources (3)
https://github.com/Cacti/cacti/security/advisories/GHSA-273r-qr93-wgcp
https://github.com/Cacti/cacti/commit/2fa404e70a5702be10682555911228e8e51ba198
https://github.com/Cacti/cacti/releases/tag/release%2F1.2.31
Do you need more information?
Contact Us
CVSS v4
Base Score:
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
PASSIVE
Vulnerable System Confidentiality
LOW
Vulnerable System Integrity
LOW
Vulnerable System Availability
NONE
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE
Weakness Type (CWE)
Session Fixation
CWE-384
EPSS
Base Score:
0.18