From 97d0e5609be7fc4f10808b27911d2f07ef7fe75b Mon Sep 17 00:00:00 2001
From: Neil Williams <codehelp@debian.org>
Date: Tue, 25 Jan 2022 11:50:42 +0000
Subject: Add CVE-2021-23225 to cacti

---
 data/CVE/2021.list | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 4efc4880cb..9317095238 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -10199,7 +10199,11 @@ CVE-2021-3892
 CVE-2021-26247 (As an unauthenticated remote user, visit "http://&lt;CACTI_SERVER&gt;/ ...)
 	TODO: check
 CVE-2021-23225 (Cacti 1.1.38 allows authenticated users with User Management permissio ...)
-	TODO: check
+	- cacti <unfixed>
+	TODO: check if these are the correct commits
+	NOTE: https://github.com/Cacti/cacti/commit/6a945c4b4713f80d4fc63369bd5451574ebdec42
+	NOTE: https://github.com/Cacti/cacti/commit/1b9620cc0492ea6f12f63f05c94fff255da8524b
+	NOTE: https://www.cacti.net/info/changelog
 CVE-2021-42553
 	RESERVED
 CVE-2021-42552
-- 
cgit v1.2.3