Lucene search

GitHub_MCVELIST:CVE-2024-32480

HistoryApr 22, 2024 - 10:10 p.m.

CVE-2024-32480 LibreNMS's Time-Based Blind SQL injection leads to database extraction

2024-04-2222:10:50

CWE-89

GitHub_M

www.cve.org

librenms

sql injection

database extraction

vulnerability

version 24.4.0

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Versions prior to 24.4.0 are vulnerable to SQL injection. The order parameter is obtained from $request. After performing a string check, the value is directly incorporated into an SQL statement and concatenated, resulting in a SQL injection vulnerability. An attacker may extract a whole database this way. Version 24.4.0 fixes the issue.

CNA Affected

[
  {
    "vendor": "librenms",
    "product": "librenms",
    "versions": [
      {
        "version": "< 24.4.0",
        "status": "affected"
      }
    ]
  }
]

References

github.com/librenms/librenms/commit/83fe4b10c440d69a47fe2f8616e290ba2bd3a27c

github.com/librenms/librenms/security/advisories/GHSA-jh57-j3vq-h438

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVELIST:CVE-2024-32480