CVE-2026-26989

low-risk
Published 2026-02-20

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below are affected by a Stored Cross-Site Scripting (XSS) vulnerability in the Alert Rules workflow. An attacker with administrative privileges can inject malicious scripts that execute in the browser context of any user who accesses the Alert Rules page. This issue has been fixed in version 26.2.0.

Do I need to act?

-
0.00% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.3/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Librenms

References (4)

Patch https://github.com/librenms/librenms/commit/087608cf9f851189847cb8e8e5ad002e5917...
Issue Tracking https://github.com/librenms/librenms/pull/19039
Product https://github.com/librenms/librenms/releases/tag/26.2.0
Exploit https://github.com/librenms/librenms/security/advisories/GHSA-6xmx-xr9p-58p7
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal