LibreNMS v22.3.0 was discovered to contain multiple command injection vulnerabilities via the service_ip, hostname, and service_param parameters.
References
Link | Resource |
---|---|
https://github.com/librenms/librenms/pull/13932 | Patch Third Party Advisory |
Configurations
Information
Published : 2022-06-02 07:15
Updated : 2022-06-09 13:18
NVD link : CVE-2022-29712
Mitre link : CVE-2022-29712
JSON object : View
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Products Affected
librenms
- librenms