CVE-2022-0588

Description

Missing Authorization in Packagist librenms/librenms prior to 22.2.0.

How to fix CVE-2022-0588

To remediate CVE-2022-0588, upgrade the affected package to a fixed version below.

• Packagist/librenms/librenms—upgrade to 22.2.0 or later

Is CVE-2022-0588 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 22.2.0

CVSS scores

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2022-0588
• PATCHgithub.com/librenms/librenms
• WEBgithub.com/librenms/librenms/commit/95970af78e4c899744a715766d744deef8c505f7
• WEBhuntr.dev/bounties/caab3310-0d70-4c8a-8768-956f8dd3326d