Shodan
Vulnerabilities
Vulnerable Software
Librenms:  >> Librenms  Security Vulnerabilities
CVE-2023-46745
LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. In affected versions the login method has no rate limit. An attacker may be able to leverage this vulnerability to gain access to user accounts. This issue has been addressed in version 23.11.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Score
5.3
EPSS Score
0.0
Published
2023-11-17
CVE-2023-48295
LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. Affected versions are subject to a cross site scripting (XSS) vulnerability in the device group popups. This issue has been addressed in commit `faf66035ea` which has been included in release version 23.11.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Score
6.3
EPSS Score
0.003
Published
2023-11-17
CVE-2023-5591
SQL Injection in GitHub repository librenms/librenms prior to 23.10.0.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-10-16
CVE-2023-5060
Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms prior to 23.9.1.
CVSS Score
8.4
EPSS Score
0.0
Published
2023-09-19
CVE-2023-4977
Code Injection in GitHub repository librenms/librenms prior to 23.9.0.
CVSS Score
7.3
EPSS Score
0.001
Published
2023-09-15
CVE-2023-4978
Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms prior to 23.9.0.
CVSS Score
9.0
EPSS Score
0.0
Published
2023-09-15
CVE-2023-4979
Cross-site Scripting (XSS) - Reflected in GitHub repository librenms/librenms prior to 23.9.0.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-09-15
CVE-2023-4980
Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 23.9.0.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-09-15
CVE-2023-4981
Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms prior to 23.9.0.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-09-15
CVE-2023-4982
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 23.9.0.
CVSS Score
9.8
EPSS Score
0.0
Published
2023-09-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved