Known Vulnerabilities for products from Net-snmp
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Net-snmp".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-15862 | Net-SNMP through 5.7.3 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to ... | 7.8 - HIGH | 2020-08-20 | 2023-11-22 |
| CVE-2020-15861 | Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following. | 7.8 - HIGH | 2020-08-20 | 2022-12-03 |
| CVE-2019-20892 | net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request... | 6.5 - MEDIUM | 2020-06-25 | 2022-09-02 |
| CVE-2018-1000116 | NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execut... | 9.8 - CRITICAL | 2018-03-07 | 2020-08-24 |
| CVE-2018-18066 | snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthe... | 7.5 - HIGH | 2018-10-08 | 2019-10-16 |
| CVE-2018-18065 | _set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an au... | 6.5 - MEDIUM | 2018-10-08 | 2019-10-16 |
| CVE-2015-8100 | The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitiv... | 2.1 - LOW | 2015-11-10 | 2016-12-07 |
| CVE-2015-5621 | The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_var... | 7.5 - HIGH | 2015-08-19 | 2018-10-10 |
| CVE-2014-3565 | snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option is used, allows remote attackers to cause a denial of servic... | 5 - MEDIUM | 2014-10-07 | 2023-02-13 |
| CVE-2014-2310 | The AgentX subagent in Net-SNMP before 5.4.4 allows remote attackers to cause a denial of service (hang) by sending a multi-o... | 5 - MEDIUM | 2014-04-17 | 2014-04-18 |
| CVE-2014-2285 | The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier, when using certain P... | 4.3 - MEDIUM | 2014-04-27 | 2016-12-08 |
| CVE-2014-2284 | The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does ... | 5 - MEDIUM | 2014-03-24 | 2014-09-13 |
| CVE-2012-6151 | Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attacke... | 4.3 - MEDIUM | 2013-12-13 | 2017-08-29 |
| CVE-2012-2141 | Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remot... | 3.5 - LOW | 2012-08-14 | 2017-08-29 |
| CVE-2009-1887 | agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to cause a denial ... | 5 - MEDIUM | 2009-06-26 | 2023-11-07 |
| CVE-2008-6123 | The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for cli... | 5 - MEDIUM | 2009-02-12 | 2024-01-12 |
| CVE-2008-4309 | Integer overflow in the netsnmp_create_subtree_cache function in agent/snmp_agent.c in net-snmp 5.4 before 5.4.2.1, 5.3 befor... | 5 - MEDIUM | 2008-10-31 | 2023-11-07 |
| CVE-2008-2292 | Buffer overflow in the __snprint_value function in snmp_get in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl,... | 6.8 - MEDIUM | 2008-05-18 | 2017-09-29 |
| CVE-2008-0960 | SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; ... | 10 - HIGH | 2008-06-10 | 2018-10-30 |
| CVE-2007-5846 | The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory c... | 7.8 - HIGH | 2007-11-06 | 2018-10-15 |
Known software with vulnerabilities from Net-snmp
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Net-snmp | Net-snmp | 5.0 |