CVE-2022-0587

Description

Improper Authorization in Packagist librenms/librenms prior to 22.2.0.

How to fix CVE-2022-0587

To remediate CVE-2022-0587, upgrade the affected package to a fixed version below.

• Packagist/librenms/librenms—upgrade to 22.2.0 or later

Is CVE-2022-0587 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 22.2.0

CVSS scores

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2022-0587
• PATCHgithub.com/librenms/librenms
• WEBgithub.com/librenms/librenms/commit/95970af78e4c899744a715766d744deef8c505f7
• WEBhuntr.dev/bounties/0c7c9ecd-33ac-4865-b05b-447ced735469