CVE-2022-3525 Information
Nov 25, 2022
cve
Description
Deserialization of Untrusted Data in GitHub repository librenms/librenms prior to 22.10.0.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Reference
https://huntr.dev/bounties/ed048e8d-87af-440a-a91f-be1e65a40330 https://github.com/librenms/librenms/commit/ae3925b09ad3c5d0f7a9d5a26ae2f2f778834948
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
8.8
Share on: