LibreNMS is vulnerable to OS command injection. It does not properly validate the user input via the graphing options html/includes/graphs/common.inc.php
and html/includes/graphs/graphs.inc.php
, allowing an attacker to inject any RRDtool commands such as cd
and ls
via html/graph.php
script.
CPE | Name | Operator | Version |
---|---|---|---|
librenms/librenms | le | 1.52 |
github.com/librenms/librenms/commit/9faae11381f148221e12cafef31ea79351a96d7f#diff-427ecd98ea6eda31dd4d30e76730a75e
www.darkmatter.ae/xen1thlabs/librenms-limited-local-file-inclusion-via-directory-traversal-vulnerability-xl-19-020/
www.darkmatter.ae/xen1thlabs/librenms-rrdtool-injection-vulnerability-xl-19-023/