Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-2285
HistoryApr 27, 2014 - 10:55 p.m.

CVE-2014-2285

2014-04-2722:55:05
CWE-20
[email protected]
web.nvd.nist.gov
39
cve-2014-2285
perl
trapreceiver
snmp
denial of service

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.9%

JSON

The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier, when using certain Perl versions, allows remote attackers to cause a denial of service (snmptrapd crash) via an empty community string in an SNMP trap, which triggers a NULL pointer dereference within the newSVpv function in Perl.

Affected configurations

NVD
Node
net-snmpnet-snmpRange5.7.3pre1
CPENameOperatorVersion
net-snmp:net-snmpnet-snmple5.7.3

Related

nessus 12
openvas 11
ubuntucve 1
debiancve 1
prion 1
cvelist 1
nvd 1
securityvulns 6
oraclelinux 1
veracode 1
redhat 1
centos 1
mageia 1
ibm 1
gentoo 1
ubuntu 1
rosalinux 1
nessus
nessus
EulerOS 2.0 SP2 : net-snmp (EulerOS-SA-2020-1621)
2020-06-17 00:00:00
Mandriva Linux Security Advisory : net-snmp (MDVSA-2014:052)
2014-03-14 00:00:00
CentOS 5 : net-snmp (CESA-2014:0322)
2014-03-25 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for net-snmp (EulerOS-SA-2020-1621)
2020-06-16 00:00:00
RedHat Update for net-snmp RHSA-2014:0322-01
2014-03-25 00:00:00
Mageia: Security Advisory (MGASA-2014-0122)
2022-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2014-2285
2014-03-05 00:00:00
debiancve
debiancve
CVE-2014-2285
2014-04-27 22:55:05
prion
prion
Null pointer dereference
2014-04-27 22:55:00
cvelist
cvelist
CVE-2014-2285
2014-04-27 22:00:00
nvd
nvd
CVE-2014-2285
2014-04-27 22:55:05
securityvulns
securityvulns
[ MDVSA-2014:052 ] net-snmp
2014-03-24 00:00:00
Net-SNMP DoS
2014-03-24 00:00:00
[ MDVSA-2015:092 ] net-snmp
2015-04-20 00:00:00
oraclelinux
oraclelinux
net-snmp security update
2014-03-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:01:56
redhat
redhat
(RHSA-2014:0322) Moderate: net-snmp security update
2014-03-24 00:00:00
centos
centos
net security update
2014-03-24 20:45:45
mageia
mageia
Updated net-snmp packages fix two vulnerabilities
2014-03-07 18:16:46
ibm
ibm
Security Bulletin: Tivoli Storage Productivity Center is affected by the following Net-SNMP vulnerabilities: CVE-2014-2284, CVE-2014-2285
2022-08-19 18:23:31
gentoo
gentoo
Net-SNMP: Denial of service
2014-09-01 00:00:00
ubuntu
ubuntu
Net-SNMP vulnerabilities
2014-04-14 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1929
2021-07-02 17:32:57

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.9%

JSON
Related for CVE-2014-2285
nessus12openvas11ubuntucve1debiancve1prion1cvelist1nvd1securityvulns6oraclelinux1veracode1redhat1centos1mageia1ibm1gentoo1ubuntu1rosalinux1