CNNVD-202601-4551 Information
CNNVD ID
CNNVD-202601-4551
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
LibreNMS是LibreNMS社区的一套基于PHP和MySQL的开源网络监控系统。该系统具有自定义警报、自动发现网络环境和自动更新等特点。 LibreNMS 1.46版本存在安全漏洞,该漏洞源于对MAC记账图形端点中sort参数的操作不当,可能导致SQL注入攻击。
Description (English)
LibreNMS is an open-source network monitoring system based on PHP and MySQL for the LibreNMS community. The system has features such as custom alerts, automatic discovery of the network environment and automatic updating. There is a security loophole in the LibreNMS 1.46 version, which results from the improper operation of the sort parameters in the MAC account at the endpoint, which could lead to an SQL injection attack.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
LibreNMS
Published
2026-01-27
Last Modified
2026-02-24
References
https://community.librenms.org/ https://github.com/librenms/librenms https://www.exploit-db.com/exploits/49246 https://www.librenms.org https://www.vulncheck.com/advisories/librenms-mac-accounting-graph-authenticated-sql-injection