CVE-2026-26988CRITICAL 9.1EPSS p31.8%

CVE-2026-26988CVE-2026-26988

Description

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below contain an SQL Injection vulnerability in the ajax_table.php endpoint. The application fails to properly sanitize or parameterize user input when processing IPv6 address searches. Specifically, the address parameter is split into an address and a prefix, and the prefix portion is directly concatenated into the SQL query string without validation. This allows an attacker to inject arbitrary SQL commands, potentially leading to unauthorized data access or database manipulation. This issue has been fixed in version 26.2.0.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.40% probability of exploitation · percentile 31.8% · 2026-06-18T12:00:27Z
Published2026-02-20
Last modified2026-02-20

Underlying weaknesses· 1

CWE-89

References

  1. https://github.com/librenms/librenms/commit/15429580baba03ed1dd377bada1bde4b7a1175a1
  2. https://github.com/librenms/librenms/pull/18777
  3. https://github.com/librenms/librenms/security/advisories/GHSA-h3rv-q4rq-pqcv

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection')cwe-890%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-26990
CVE
CVE-2026-39486
CVE
CVE-2026-22044
CVE
CVE-2026-28516
CVE
CVE-2026-29861
CVE
CVE-2025-67255
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.