CVE-2020-15873: LibreNMS SQL Injection vulnerability
6.5
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.87994%
CWE
Published
5/24/2022
Updated
4/24/2024
KEV Status
No
Technology
PHP
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
librenms/librenms | composer | < 1.65.1 | 1.65.1 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from the insecure construction of an SQL query in customoid.inc.php
. The original code directly interpolated the user-supplied 'device_id' POST parameter into the SQL string without sanitization or parameterization. This raw query was then passed to dbFetchRow()
, which executed it as-is. The fix replaced the interpolation with a parameterized query ('?') and proper binding, confirming the root cause was improper input handling in the dbFetchRow()
usage context. The function itself isn't inherently vulnerable but was misused in this scenario.