Описание
Missing Authentication for Critical Function in LibreNMS
An issue was discovered in LibreNMS through 1.47. A number of scripts import the Authentication libraries, but do not enforce an actual authentication check. Several of these scripts disclose information or expose functions that are of a sensitive nature and are not expected to be publicly accessible.
Пакеты
Наименование
librenms/librenms
composer
Затронутые версииВерсия исправления
< 1.50.1
1.50.1
Связанные уязвимости
CVSS3: 9.1
nvd
около 6 лет назад
An issue was discovered in LibreNMS through 1.47. A number of scripts import the Authentication libraries, but do not enforce an actual authentication check. Several of these scripts disclose information or expose functions that are of a sensitive nature and are not expected to be publicly accessible.