Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
net-snmp vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2015-8100
The net-snmp package in OpenBSD up to and including 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file.
Net-snmp Net-snmp
7.8
CVSSv2
CVE-2007-5846
The SNMP agent (snmp_agent.c) in net-snmp prior to 5.4.1 allows remote malicious users to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.
Net-snmp Net-snmp
7.5
CVSSv2
CVE-2006-6305
Unspecified vulnerability in Net-SNMP 5.3 prior to 5.3.0.1, when configured using the rocommunity or rouser snmpd.conf tokens, causes Net-SNMP to grant write access to users or communities that only have read-only access.
Net-snmp Net-snmp 5.3
3.5
CVSSv2
CVE-2012-2141
Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and snmpd crash) via an SNMP GET request for an entry not in the extension table.
Net-snmp Net-snmp 5.7.1
5
CVSSv2
CVE-2009-1887
agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux (RHEL) 3 allows remote malicious users to cause a denial of service (daemon crash) via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an inco...
Net-snmp Net-snmp 5.0.9
4
CVSSv2
CVE-2019-20892
net-snmp prior to 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release.
Net-snmp Net-snmp
Oracle Zfs Storage Appliance Kit 8.8
NA
CVE-2022-44792
handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 up to and including 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Servic...
Net-snmp Net-snmp
Debian Debian Linux 10.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
NA
CVE-2022-44793
handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 up to and including 5.9.3 has a NULL Pointer Exception bug that can be used by a remote malicious user to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
Net-snmp Net-snmp
Debian Debian Linux 10.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
5
CVSSv2
CVE-2008-6123
The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 up to and including 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote malicious users to bypass intended access restrictions and ex...
Net-snmp Net-snmp
Opensuse Opensuse 11.2
Suse Linux Enterprise 9-11
Opensuse Opensuse 10.3-11.1
Redhat Enterprise Linux 3.0
5
CVSSv2
CVE-2018-18066
snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP prior to 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated malicious user to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
Net-snmp Net-snmp
Netapp Storagegrid Webscale -
Netapp Solidfire Element Os -
Netapp Hyper Converged Infrastructure -
Netapp Cloud Backup -
Netapp Data Ontap -
Netapp E-series Santricity Os Controller
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »