PT-2024-33674 · Librenms · Librenms

Raphaelcss

Published

2024-11-15

Updated

2024-11-20

CVE-2024-49764

CVSS v3.1

4.8

Medium

Vector

AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions: LibreNMS versions prior to 24.10.0

Description: A Stored Cross-Site Scripting (XSS) vulnerability in the "Capture Debug Information" page allows authenticated users to inject arbitrary JavaScript through the hostname parameter when creating a new device. This results in the execution of malicious code when the "Capture Debug Information" page is visited, redirecting the user and sending non-httponly cookies to an attacker-controlled domain.

Recommendations: For versions prior to 24.10.0, update to version 24.10.0 to fix the vulnerability. As a temporary workaround, consider restricting access to the "Capture Debug Information" page to minimize the risk of exploitation. Avoid using the hostname parameter in the affected page until the issue is resolved.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2024-49764

GHSA-RMR4-X6C9-JC68

Affected Products

Librenms

PT-2024-33674 · Librenms · Librenms

CVE-2024-49764

Weakness Enumeration

Related Identifiers

Affected Products

References · 11