Lucene search
GoogleOSV:GHSA-3C33-3465-FHX2HistorySep 08, 2021 - 5:27 p.m.
Exposure of Resource to Wrong Sphere in LibreNMS
2021-09-0817:27:16
Google
osv.dev
5
0.005 Low
EPSS
Percentile
76.1%
An issue was discovered in LibreNMS before 1.65.1. It has insufficient access control for normal users because of “‘guard’ => ‘admin’” instead of “‘middleware’ => [‘can:admin’]” in routes/web.php.
References
community.librenms.org/c/announcements
github.com/librenms/librenms/commit/e5bb6d80bc308fc56b9a01ffb76c34159995353c
github.com/librenms/librenms/compare/1.65...1.65.1
github.com/librenms/librenms/pull/11915
github.com/librenms/librenms/releases/tag/1.65.1
nvd.nist.gov/vuln/detail/CVE-2020-15877
shielder.it/blog
Related
nvd
nvd
CVE-2020-15877
2020-07-21 17:15:12
github
github
Exposure of Resource to Wrong Sphere in LibreNMS
2021-09-08 17:27:16
osv
osv
CVE-2020-15877
2020-07-21 17:15:12
cvelist
cvelist
CVE-2020-15877
2020-07-21 17:00:16
cve
cve
CVE-2020-15877
2020-07-21 17:15:12
prion
prion
Improper access control
2020-07-21 17:15:00