{"id":"CVE-2020-13230","details":"In Cacti before 1.2.11, disabling a user account does not immediately invalidate any permissions granted to that account (e.g., permission to view logs).","modified":"2026-05-15T12:04:03.368675663Z","published":"2020-05-20T14:15:11.407Z","database_specific":{"unresolved_ranges":[{"vendor_product":"debian:debian_linux","extracted_events":[{"last_affected":"9.0"}],"source":"CPE_FIELD","cpes":["cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"]},{"vendor_product":"fedoraproject:fedora","extracted_events":[{"last_affected":"31"},{"last_affected":"32"}],"source":"CPE_FIELD","cpes":["cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*"]}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ICJMWSY77IIGZYR6FE6NAQZFBO42VECO/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3PCDGNELH7HEBIXRNT5J5EWQEXQAU6B/"},{"type":"ADVISORY","url":"https://github.com/Cacti/cacti/releases/tag/release%2F1.2.11"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00038.html"},{"type":"REPORT","url":"https://github.com/Cacti/cacti/issues/3343"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}]}