CVE-2026-26989
Last modified
CVE-2026-26989 is a medium-severity vulnerability rated 4.8/10 on the CVSS scale. LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below are affected by a Stored Cross-Site Scripting (XSS) vulnerability in the Alert Rules workflow. EPSS estimates a 0.24% chance of exploitation in the next 30 days.
Description
LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below are affected by a Stored Cross-Site Scripting (XSS) vulnerability in the Alert Rules workflow. An attacker with administrative privileges can inject malicious scripts that execute in the browser context of any user who accesses the Alert Rules page. This issue has been fixed in version 26.2.0.
Metrics
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Librenms | Librenms | < 26.2.0 |
References
- https://github.com/librenms/librenms/pull/19039Issue Tracking
- https://github.com/librenms/librenms/releases/tag/26.2.0Product, Release Notes
- https://github.com/librenms/librenms/security/advisories/GHSA-6xmx-xr9p-58p7Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-26989?
How severe is CVE-2026-26989?
How do I fix CVE-2026-26989?
Are you affected by CVE-2026-26989?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST