CNNVD-202510-2313 Information
CNNVD ID
CNNVD-202510-2313
Related CVE
- CNNVD Published: 2025-10-16
Description (Chinese)
LibreNMS是LibreNMS社区的一套基于PHP和MySQL的开源网络监控系统。该系统具有自定义警报、自动发现网络环境和自动更新等特点。 LibreNMS 25.10.0之前版本存在安全漏洞,该漏洞源于警报规则名称清理不当,可能导致HTML代码注入。
Description (English)
LibreNMS is an open-source network monitoring system based on PHP and MySQL for the LibreNMS community. The system has features such as custom alerts, automatic discovery of the network environment and automatic updating. The previous version of LibreNMS 25.10.0 had a security loophole, which stemmed from the inappropriate clean-up of alarm code names, which could lead to the injection of HTML codes.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
LibreNMS
Published
2025-10-16
Last Modified
2026-02-24
References
https://github.com/librenms/librenms/commit/dccdf6769976a974d70f06a7ce8d5a846b29db6f https://github.com/librenms/librenms/security/advisories/GHSA-6g2v-66ch-6xmh https://access.redhat.com/security/cve/cve-2025-62412
Patch
https://github.com/librenms/librenms/releases
Share on: