Vulnerabilities > Librenms

DATE CVE VULNERABILITY TITLE RISK
2019-09-09 CVE-2019-12464 Path Traversal vulnerability in Librenms 1.50.1
An issue was discovered in LibreNMS 1.50.1.
network
high complexity
librenms CWE-22
7.5
2019-09-09 CVE-2019-12463 Improper Encoding or Escaping of Output vulnerability in Librenms 1.50.1/1.51/1.52
An issue was discovered in LibreNMS 1.50.1.
network
low complexity
librenms CWE-116
8.8
2019-09-09 CVE-2019-10671 SQL Injection vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
low complexity
librenms CWE-89
8.8
2019-09-09 CVE-2019-10670 Cross-site Scripting vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
low complexity
librenms CWE-79
6.1
2019-09-09 CVE-2019-10669 OS Command Injection vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
low complexity
librenms CWE-78
7.2
2019-09-09 CVE-2019-10668 Missing Authentication for Critical Function vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
low complexity
librenms CWE-306
critical
9.1
2019-09-09 CVE-2019-10667 Information Exposure vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
low complexity
librenms CWE-200
5.3
2019-09-09 CVE-2019-10666 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
high complexity
librenms CWE-829
8.1
2019-09-09 CVE-2019-10665 Injection vulnerability in Librenms
An issue was discovered in LibreNMS through 1.47.
network
low complexity
librenms CWE-74
critical
9.8
2019-08-28 CVE-2019-15230 Cross-site Scripting vulnerability in Librenms 1.54
LibreNMS v1.54 has XSS in the Create User, Inventory, Add Device, Notifications, Alert Rule, Create Maintenance, and Alert Template sections of the admin console.
network
low complexity
librenms CWE-79
5.4