CVE-2024-50352 | LibreNMS up to 24.9.x Device Overview Page name cross site scripting

Posted by Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability was found in LibreNMS up to 24.9.x. It has been classified as problematic. This affects an unknown part of the component Device Overview Page. The manipulation of the argument name leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-50352. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-50352 | LibreNMS up to 24.9.x Device Overview Page name cross site scripting

Related Posts

CVE-2021-46904 | Linux Kernel up to 5.11.13 hso get_free_serial_index use after free

CVE-2024-45590 | expressjs body-parser up to 1.20.2 amplification (GHSA-qwcr-r2fm-qrc7)

CVE-2023-45841 | Buildroot 2023.08.1/622698d7847 code download (TALOS-2023-1844)

CVE-2024-20793 | Adobe Illustrator up to 27.9.3/28.4 out-of-bounds (apsb24-30)