Vulnerabilities > Librenms

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-29711 Cross-site Scripting vulnerability in Librenms 22.3.0
LibreNMS v22.3.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Table/GraylogController.php.
network
librenms CWE-79
4.3
2022-06-02 CVE-2022-29712 Command Injection vulnerability in Librenms 22.3.0
LibreNMS v22.3.0 was discovered to contain multiple command injection vulnerabilities via the service_ip, hostname, and service_param parameters.
network
low complexity
librenms CWE-77
7.5
2022-02-27 CVE-2022-0772 Cross-site Scripting vulnerability in Librenms
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.2.2.
network
librenms CWE-79
3.5
2022-02-15 CVE-2022-0589 Cross-site Scripting vulnerability in Librenms
Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.1.0.
network
librenms CWE-79
3.5
2022-02-15 CVE-2022-0587 Improper Authorization vulnerability in Librenms
Improper Authorization in Packagist librenms/librenms prior to 22.2.0.
network
low complexity
librenms CWE-285
4.0
2022-02-15 CVE-2022-0588 Information Exposure vulnerability in Librenms
Exposure of Sensitive Information to an Unauthorized Actor in Packagist librenms/librenms prior to 22.2.0.
network
low complexity
librenms CWE-200
4.0
2022-02-14 CVE-2022-0580 Improper Access Control vulnerability in Librenms
Improper Access Control in Packagist librenms/librenms prior to 22.2.0.
network
low complexity
librenms CWE-284
6.5
2022-02-14 CVE-2022-0575 Cross-site Scripting vulnerability in Librenms
Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.2.0.
network
librenms CWE-79
3.5
2022-02-14 CVE-2022-0576 Cross-site Scripting vulnerability in Librenms
Cross-site Scripting (XSS) - Generic in Packagist librenms/librenms prior to 22.1.0.
network
librenms CWE-79
4.3
2021-12-03 CVE-2021-44278 Path Traversal vulnerability in Librenms 21.11.0
Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php.
network
low complexity
librenms CWE-22
7.5