#VU35526 Path traversal in LibreNMS - CVE-2019-12464

Cybersecurity Help s.r.o.

Published: 2019-09-09 | Updated: 2020-08-08

Vulnerability identifier: #VU35526

Vulnerability risk: Medium

CVSSv4.0: 5.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-12464

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
LibreNMS
Other software / Other software solutions

Vendor: LibreNMS Project

Description

The vulnerability allows a remote authenticated user to execute arbitrary code.

An issue was discovered in LibreNMS 1.50.1. An authenticated user can perform a directory traversal attack against the /pdf.php file with a partial filename in the report parameter, to cause local file inclusion resulting in code execution.

Mitigation
Install update from vendor's website.

Vulnerable software versions

LibreNMS: 1.50.1

External links
https://www.darkmatter.ae/xen1thlabs/librenms-limited-local-file-inclusion-via-directory-traversal-vulnerability-xl-19-019/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Path traversal in LibreNMS