A vulnerability was found in Cacti up to 1.2.30 . It has been classified as problematic . Affected by this issue is the function rrdtool_function_update . Performing a manipulation results in use of function with inconsistent implementations. This vulnerability is cataloged as CVE-2026-39894 . The attack must be initiated from a local position. There is no exploit available. Upgrading the affected component is recommended.