Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2022-44792

Published: 07/11/2022 Updated: 28/03/2023
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Net-snmp

Vulnerability Summary

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 up to and including 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

net-snmp net-snmp

debian debian linux 10.0

netapp h300s_firmware -

netapp h500s_firmware -

netapp h700s_firmware -

netapp h410s_firmware -

Vendor Advisories

Red Hat: Moderate: net-snmp security and bug fix update
Synopsis Moderate: net-snmp security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for net-snmp is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update ...
Debian CVElist Bug Report Logs: net-snmp: CVE-2022-44792 CVE-2022-44793
Debian Bug report logs - #1024020 net-snmp: CVE-2022-44792 CVE-2022-44793 Package: src:net-snmp; Maintainer for src:net-snmp is Debian SNMP Team <team+snmp@trackerdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Sun, 13 Nov 2022 19:39:02 UTC Severity: important Tags: security, upstream Found in v ...
Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalarsc in Net-SNMP 58 through 593 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service ...

ICS Advisories

https://ics-cert.us-cert.gov/advisories/1f4aa91c0b8b922c5748b0e04bbdc6a0
Critical Infrastructure Sectors: Critical Manufacturing

References

CWE-476https://github.com/net-snmp/net-snmp/issues/474https://gist.github.com/menglong2234/b7bc13ae1a144f47cc3c95a7ea062428https://lists.debian.org/debian-lts-announce/2023/01/msg00010.htmlhttps://security.netapp.com/advisory/ntap-20230223-0011/https://access.redhat.com/errata/RHSA-2023:2969https://nvd.nist.govhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-320-13https://access.redhat.com/security/cve/cve-2022-44792
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook