CVE-2021-44277: XSS
First published: Wed Dec 01 2021(Updated: )
LibreNMS 21.11.0 is affected by is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/common/alert-log.inc.php.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| composer/librenms/librenms | <=21.11.0 | |
| Librenms Librenms | =21.11.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-44277?
CVE-2021-44277 is a Cross Site Scripting (XSS) vulnerability in LibreNMS 21.11.0.
What software versions are affected by CVE-2021-44277?
CVE-2021-44277 affects LibreNMS 21.11.0.
How severe is CVE-2021-44277?
CVE-2021-44277 has a severity score of 6.1, which is considered medium.
How can I fix CVE-2021-44277?
To fix CVE-2021-44277, upgrade to a version of LibreNMS that is not affected by the vulnerability.
Where can I find more information about CVE-2021-44277?
More information about CVE-2021-44277 can be found at the following references: [NVD](https://nvd.nist.gov/vuln/detail/CVE-2021-44277), [GitHub Pull Request](https://github.com/librenms/librenms/pull/13554), [GitHub Commit](https://github.com/librenms/librenms/pull/13554/commits/fff7b45a7599f8f13a55250dc5f2b957f3394194).
- collector/github-advisory-latest
- alias/GHSA-4gwh-2pqx-f5cc
- alias/CVE-2021-44277
- collector/github-advisory
- collector/nvd-index
- collector/nvd-cve
- package-manager/composer
- vendor/librenms
- canonical/librenms librenms
- version/librenms librenms/21.11.0