CVE-2020-36947

HighPublic PoC

Published: 27 January 2026

Published

27 January 2026

Modified

02 February 2026

KEV Added

—

Patch

—

CVSS Score 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

EPSS Score 0.0001 1.7th percentile

Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2020-36947 is a high-severity SQL Injection (CWE-89) vulnerability in Librenms Librenms. Its CVSS base score is 7.1 (High).

Operationally, ranked at the 1.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Threat & Defense Details

Likely Mitigating ControlsAI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

CA-8 Penetration Testing

addresses: CWE-89

Penetration testing uses SQL injection payloads against database interfaces, identifying and supporting fixes for SQL injection weaknesses.

SI-10 Information Input Validation

addresses: CWE-89

Validates query inputs to prevent SQL syntax or command manipulation.

NVD Description

LibreNMS 1.46 contains an authenticated SQL injection vulnerability in the MAC accounting graph endpoint that allows remote attackers to extract database information. Attackers can exploit the vulnerability by manipulating the 'sort' parameter with crafted SQL injection techniques to retrieve sensitive…

database contents through time-based blind SQL injection.

Deeper analysisAI

CVE-2020-36947 is an authenticated SQL injection vulnerability in LibreNMS version 1.46, specifically within the MAC accounting graph endpoint. The issue, classified under CWE-89, allows attackers to manipulate the 'sort' parameter using crafted SQL injection techniques to perform time-based blind SQL injection and extract sensitive database information.

Remote attackers with low privileges (PR:L) can exploit this vulnerability over the network (AV:N) with low attack complexity (AC:L) and no user interaction (UI:N). Successful exploitation enables high confidentiality impact (C:H) with low integrity impact (I:L) and no availability impact (A:N), as reflected in the CVSS v3.1 base score of 7.1, allowing them to retrieve database contents.

Advisories and additional details are available from the LibreNMS community at https://community.librenms.org/, the project's GitHub repository at https://github.com/librenms/librenms, the official site at https://www.librenms.org, VulnCheck at https://www.vulncheck.com/advisories/librenms-mac-accounting-graph-authenticated-sql-injection, and a proof-of-concept exploit at https://www.exploit-db.com/exploits/49246. The vulnerability was published on 2026-01-27T16:16:12.040.

Details

CWE(s): CWE-89

Affected Products

librenms

1.46

CVEs Like This One

CVE-2026-26990Same product: Librenms Librenms

CVE-2026-26988Same product: Librenms Librenms

CVE-2026-6204Same product: Librenms Librenms

CVE-2025-67255Same product class: network monitoring / SIEM

CVE-2025-9428Same product class: network monitoring / SIEM

CVE-2012-10063Same product class: network monitoring / SIEM

CVE-2021-47693Same product class: network monitoring / SIEM

CVE-2016-15050Same product class: network monitoring / SIEM

CVE-2020-36859Same product class: network monitoring / SIEM

CVE-2025-34277Same product class: network monitoring / SIEM

References

https://community.librenms.org/
Product · disclosure@vulncheck.com
https://github.com/librenms/librenms
Product · disclosure@vulncheck.com
https://www.exploit-db.com/exploits/49246
Exploit, Third Party Advisory, VDB Entry · disclosure@vulncheck.com
https://www.librenms.org
Product · disclosure@vulncheck.com
https://www.vulncheck.com/advisories/librenms-mac-accounting-graph-authenticated-sql-injection
Third Party Advisory · disclosure@vulncheck.com
https://community.librenms.org/
Product · 134c704f-9b21-4f2e-91b3-4a467353bcc0