Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/05/08 12:0 a.m.48 views

CVE-2024-51092

LibreNMS before 24.10.0 allows a remote attacker to execute arbitrary code via OS command injection involving AboutController.php's index, SettingsController.php's update, and PollDevice.php's initRrdDirectory...

0.06933EPSS
Exploits4References2
0day.today
0day.today
added 2025/01/21 12:0 a.m.161 views

LibreNMS Authenticated Remote Code Execution Exploit

An authenticated attacker can create dangerous directory names on the system and alter sensitive configuration parameters through the web portal. Those two defects combined then allows to inject arbitrary OS commands inside shellexec calls, thus achieving arbitrary code execution. This module...

7.6AI score0.06933EPSS
Exploits4
Metasploit
Metasploit
added 2025/01/20 6:54 p.m.596 views

LibreNMS Authenticated RCE (CVE-2024-51092)

An authenticated attacker can create dangerous directory names on the system and alter sensitive configuration parameters through the web portal. Those two defects combined then allows to inject arbitrary OS commands inside shellexec calls, thus achieving arbitrary code execution. Module Options...

9.1CVSS8.5AI score0.06933EPSS
Exploits4
Circl
Circl
added 2024/11/14 11:58 p.m.8 views

CVE-2024-51092

creationtimestamp| type| source ---|---|--- 2024-11-14 23:58:54+00:00| published-proof-of-concept| https://github.com/librenms/librenms/security/advisories/GHSA-x645-6pf9-xwxw 2024-11-19 06:27:37+00:00| seen| https://t.me/CyberBulletin/1521 2024-11-19 06:27:37+00:00| seen|...

9.1CVSS7.3AI score0.06933EPSS
Exploits4References9
Rows per page
Query Builder