PT-2022-22657 · Librenms · Librenms

Murrant

·

Published

2022-11-20

·

Updated

2022-11-21

·

CVE-2022-3525

CVSS v3.1

9.0

Critical

VectorAV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions librenms versions prior to 22.10.0
Description The issue concerns deserialization of untrusted data.
Recommendations For versions prior to 22.10.0, update to version 22.10.0 or later to resolve the issue.

Exploit

Fix

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2022-3525
GHSA-CV9G-H8MM-XX5H

Affected Products

Librenms