Skip to main content

Net Snmp

15 CVEs product

Monthly

CVE-2022-44793 MEDIUM POC THREAT This Month

handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Net Snmp Debian Linux H300s Firmware +3
NVD GitHub
CVSS 3.1
6.5
EPSS
53.5%
CVE-2022-44792 MEDIUM POC THREAT This Month

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Net Snmp Debian Linux H300s Firmware +3
NVD GitHub
CVSS 3.1
6.5
EPSS
52.1%
CVE-2020-15862 HIGH PATCH This Week

Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Net Snmp Ubuntu Linux Cloud Backup Hci Management Node +2
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-15861 HIGH PATCH This Week

Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Net Snmp Ubuntu Linux Cloud Backup Smi S Provider +1
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2018-18066 HIGH POC PATCH This Week

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Net Snmp Cloud Backup Hyper Converged Infrastructure +4
NVD
CVSS 3.1
7.5
EPSS
4.3%
CVE-2018-18065 MEDIUM POC PATCH THREAT This Month

_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Net Snmp Debian Linux Ubuntu Linux +7
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
17.2%
CVE-2018-1000116 CRITICAL POC Act Now

NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Net Snmp Debian Linux
NVD
CVSS 3.0
9.8
EPSS
6.5%
CVE-2015-8100 LOW Monitor

The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Net Snmp
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-5621 HIGH POC THREAT Act Now

The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 17.7%.

RCE Denial Of Service Net Snmp
NVD Exploit-DB
CVSS 3.1
7.5
EPSS
17.7%
CVE-2014-3565 MEDIUM POC PATCH This Month

snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option is used, allows remote attackers to cause a denial of service (snmptrapd crash) via a crafted SNMP trap message, which triggers a. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Mac Os X Ubuntu Linux Net Snmp
NVD
CVSS 2.0
5.0
EPSS
8.8%
CVE-2014-2285 MEDIUM This Month

The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier, when using certain Perl versions, allows remote attackers to cause a denial of service. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Net Snmp
NVD VulDB
CVSS 2.0
4.3
EPSS
3.3%
CVE-2014-2310 MEDIUM This Month

The AgentX subagent in Net-SNMP before 5.4.4 allows remote attackers to cause a denial of service (hang) by sending a multi-object request with an Object ID (OID) containing more subids than previous. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Net Snmp
NVD VulDB
CVSS 2.0
5.0
EPSS
1.1%
CVE-2014-2284 MEDIUM This Month

The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does not properly validate input, which allows remote attackers to cause a. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Net Snmp
NVD VulDB
CVSS 2.0
5.0
EPSS
4.3%
CVE-2012-6151 MEDIUM POC THREAT This Month

Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption,. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 27.4%.

Denial Of Service Mac Os X Ubuntu Linux Net Snmp
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
27.4%
CVE-2012-2141 LOW Monitor

Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Net Snmp
NVD
CVSS 2.0
3.5
EPSS
1.3%
EPSS 53% CVSS 6.5
MEDIUM POC THREAT This Month

handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Net Snmp +5
NVD GitHub
EPSS 52% CVSS 6.5
MEDIUM POC THREAT This Month

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Net Snmp +5
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Net Snmp Ubuntu Linux +4
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Net Snmp Ubuntu Linux +3
NVD GitHub
EPSS 4% CVSS 7.5
HIGH POC PATCH This Week

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Net Snmp +6
NVD
EPSS 17% CVSS 6.5
MEDIUM POC PATCH THREAT This Month

_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Net Snmp +9
NVD Exploit-DB
EPSS 7% CVSS 9.8
CRITICAL POC Act Now

NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Net Snmp +1
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Net Snmp
NVD
EPSS 18% CVSS 7.5
HIGH POC THREAT Act Now

The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 17.7%.

RCE Denial Of Service Net Snmp
NVD Exploit-DB
EPSS 9% CVSS 5.0
MEDIUM POC PATCH This Month

snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option is used, allows remote attackers to cause a denial of service (snmptrapd crash) via a crafted SNMP trap message, which triggers a. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Mac Os X Ubuntu Linux +1
NVD
EPSS 3% CVSS 4.3
MEDIUM This Month

The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier, when using certain Perl versions, allows remote attackers to cause a denial of service. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Net Snmp
NVD VulDB
EPSS 1% CVSS 5.0
MEDIUM This Month

The AgentX subagent in Net-SNMP before 5.4.4 allows remote attackers to cause a denial of service (hang) by sending a multi-object request with an Object ID (OID) containing more subids than previous. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Net Snmp
NVD VulDB
EPSS 4% CVSS 5.0
MEDIUM This Month

The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does not properly validate input, which allows remote attackers to cause a. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Net Snmp
NVD VulDB
EPSS 27% CVSS 4.3
MEDIUM POC THREAT This Month

Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption,. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 27.4%.

Denial Of Service Mac Os X Ubuntu Linux +1
NVD Exploit-DB
EPSS 1% CVSS 3.5
LOW Monitor

Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Net Snmp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy