CVE-2024-47525

Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-alert-rules.php

CVSS 7.5 HIGHEPSS 26.2%CWE-79

In short

LibreNMS allows attackers to inject malicious code into alert rule titles, which then executes when other users view those rules. This can compromise user accounts and enable unauthorized actions.

Technical detail

Stored XSS vulnerability in the Alert Rules feature via the Title field, exploitable by authenticated users. The unsanitized input is stored and reflected in users' browser sessions, enabling session hijacking and privilege escalation. Fixed in version 24.9.0.

Summary generated and translated by AI from the official description.

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Rules" feature allows authenticated users to inject arbitrary JavaScript through the "Title" field. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions. This vulnerability is fixed in 24.9.0.

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L

Affected products

librenms · librenms

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/librenms/librenms/blob/9455173edce6971777cf6666d540eeeaf6201920/includes/html/print-alert-rules.php#L405 https://github.com/librenms/librenms/commit/7620d220e48563938d869da7689b8ac3f7721490 https://github.com/librenms/librenms/security/advisories/GHSA-j2j9-7pr6-xqwv