High severity7.5NVD Advisory· Published Sep 9, 2019· Updated Jun 17, 2026
CVE-2019-12464
CVE-2019-12464
Description
An issue was discovered in LibreNMS 1.50.1. An authenticated user can perform a directory traversal attack against the /pdf.php file with a partial filename in the report parameter, to cause local file inclusion resulting in code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
librenms/librenmsPackagist | < 1.53 | 1.53 |
Affected products
2- LibreNMS/LibreNMSdescription
Patches
Vulnerability mechanics
References
4- www.darkmatter.ae/xen1thlabs/librenms-limited-local-file-inclusion-via-directory-traversal-vulnerability-xl-19-019/nvdExploitThird Party Advisory
- github.com/advisories/GHSA-r336-jxfr-4c3cghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-12464ghsaADVISORY
- www.darkmatter.ae/xen1thlabs/librenms-limited-local-file-inclusion-via-directory-traversal-vulnerability-xl-19-019ghsaWEB
News mentions
0No linked articles in our index yet.