Deserialization of Untrusted Data in librenms/librenms
CVE-2022-3525
9CRITICAL
What is CVE-2022-3525?
Deserialization of Untrusted Data in GitHub repository librenms/librenms prior to 22.10.0.
Affected Version(s)
librenms/librenms < 22.10.0
References
CVSS V3.1
Score:
9
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed
CVSS V3.0
Score:
9
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved