CVE-2019-10666

Name of the Vulnerable Software and Affected Versions LibreNMS versions through 1.47

Description An issue was discovered in LibreNMS where several scripts perform dynamic script inclusion via the include() function on user-supplied input without sanitizing the values. This allows an attacker to execute PHP code from the included file. Exploitation is made difficult by additional text being appended, but it can be achieved by controlling both a filename and its content on the server, as demonstrated by the csv.php?report=../ substring.

Recommendations For LibreNMS versions through 1.47, consider disabling the dynamic script inclusion feature until a patch is available. Restrict access to the vulnerable scripts to minimize the risk of exploitation. Avoid using user-supplied input in the include() function without proper sanitization. At the moment, there is no information about a newer version that contains a fix for this vulnerability.