2024-11-20
:
LibreNMS, an open-source network monitoring system, is vulnerable to XSS attacks. An attacker can inject malicious code through the “Port Settings” page, compromising user sessions and allowing unauthorized actions. This issue is fixed in version 24.10.0.
Vulnerability Details:
Platform: LibreNMS
Version: All versions before 24.10.0
Vulnerability: Stored Cross-Site Scripting (XSS)
Severity: Critical
Date: November 15, 2024 (Published)
What Undercode Says:
LibreNMS users should upgrade to version 24.10.0 immediately to address this critical vulnerability. This XSS flaw allows attackers to inject malicious code and potentially compromise user accounts.
Please note: This information is for informational purposes only and should not be considered as a substitute for professional security advice.
References:
Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com
Image Source:
OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.help