Security Advisory

CVE-2021-31274

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-08 17:12:29

Last updated 2024-08-03 22:55:53

Assigner mitre

State PUBLISHED

Description

In LibreNMS < 21.3.0, a stored XSS vulnerability was identified in the API Access page due to insufficient sanitization of the $api->description variable. As a result, arbitrary Javascript code can get executed.

← Browse all CVEs View on cve.org ↗