Published: 30/08/2019 Updated: 31/01/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

In FreeBSD 12.0-STABLE before r350637, 12.0-RELEASE prior to 12.0-RELEASE-p9, 11.3-STABLE before r350638, 11.3-RELEASE prior to 11.3-RELEASE-p2, and 11.2-RELEASE prior to 11.2-RELEASE-p13, the bsnmp library is not properly validating the submitted length from a type-length-value encoding. A remote user could cause an out-of-bounds read or trigger a crash of the software such as bsnmpd resulting in a denial of service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freebsd freebsd 11.2
freebsd freebsd 12.0
freebsd freebsd 11.3
netapp clustered data ontap -

CWE-125 http://packetstormsecurity.com/files/153959/FreeBSD-Security-Advisory-FreeBSD-SA-19-20.bsnmp.html https://security.FreeBSD.org/advisories/FreeBSD-SA-19:20.bsnmp.asc https://seclists.org/bugtraq/2019/Aug/6 https://security.netapp.com/advisory/ntap-20190910-0002/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-5610

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect