Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2023-2254.NASL
HistoryJun 13, 2023 - 12:00 a.m.

EulerOS Virtualization 3.0.6.0 : net-snmp (EulerOS-SA-2023-2254)

2023-06-1300:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
2
JSON

According to the versions of the net-snmp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  • handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service. (CVE-2022-44792)

  • handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service. (CVE-2022-44793)

  • A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access issue. (CVE-2022-24805)

  • A flaw was found in net-snmp. This issue occurs due to improper input validation when simultaneously setting malformed OIDs in the master agent and subagent. (CVE-2022-24806)

  • A flaw was found in net-snmp. A malformed OID in a SET request to the SNMP-VIEW-BASED-ACM- MIB::vacmAccessTable can cause an out-of-bounds memory access issue. (CVE-2022-24807)

  • A flaw was found in net-snmp. A malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference issue. (CVE-2022-24808)

  • A flaw was found in net-snmp. A malformed OID in a GET-NEXT to the nsVacmAccessTable can cause a NULL pointer dereference issue. (CVE-2022-24809)

  • A flaw was found in net-snmp. A malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer dereference issue. (CVE-2022-24810)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(177150);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/13");

  script_cve_id(
    "CVE-2022-24805",
    "CVE-2022-24806",
    "CVE-2022-24807",
    "CVE-2022-24808",
    "CVE-2022-24809",
    "CVE-2022-24810",
    "CVE-2022-44792",
    "CVE-2022-44793"
  );
  script_xref(name:"IAVA", value:"2022-A-0305");

  script_name(english:"EulerOS Virtualization 3.0.6.0 : net-snmp (EulerOS-SA-2023-2254)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing multiple security updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the net-snmp packages installed, the EulerOS Virtualization installation on the remote host
is affected by the following vulnerabilities :

  - handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer
    Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash
    via a crafted UDP packet, resulting in Denial of Service. (CVE-2022-44792)

  - handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL
    Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via a crafted
    UDP packet, resulting in Denial of Service. (CVE-2022-44793)

  - A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can
    cause an out-of-bounds memory access issue. (CVE-2022-24805)

  - A flaw was found in net-snmp. This issue occurs due to improper input validation when simultaneously
    setting malformed OIDs in the master agent and subagent. (CVE-2022-24806)

  - A flaw was found in net-snmp. A malformed OID in a SET request to the SNMP-VIEW-BASED-ACM-
    MIB::vacmAccessTable can cause an out-of-bounds memory access issue. (CVE-2022-24807)

  - A flaw was found in net-snmp. A malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause
    a NULL pointer dereference issue. (CVE-2022-24808)

  - A flaw was found in net-snmp. A malformed OID in a GET-NEXT to the nsVacmAccessTable can cause a NULL
    pointer dereference issue. (CVE-2022-24809)

  - A flaw was found in net-snmp. A malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer
    dereference issue. (CVE-2022-24810)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security
advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional
issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2023-2254
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1dce7560");
  script_set_attribute(attribute:"solution", value:
"Update the affected net-snmp packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-44793");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/08/04");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/06/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/06/13");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:net-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:net-snmp-agent-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:net-snmp-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:net-snmp-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:net-snmp-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:3.0.6.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "3.0.6.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 3.0.6.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

var flag = 0;

var pkgs = [
  "net-snmp-5.8-1.h5.eulerosv2r8",
  "net-snmp-agent-libs-5.8-1.h5.eulerosv2r8",
  "net-snmp-devel-5.8-1.h5.eulerosv2r8",
  "net-snmp-libs-5.8-1.h5.eulerosv2r8",
  "net-snmp-utils-5.8-1.h5.eulerosv2r8"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "net-snmp");
}
VendorProductVersionCPE
huaweieulerosnet-snmp-develp-cpe:/a:huawei:euleros:net-snmp-devel
huaweieulerosnet-snmp-utilsp-cpe:/a:huawei:euleros:net-snmp-utils
huaweieulerosnet-snmp-agent-libsp-cpe:/a:huawei:euleros:net-snmp-agent-libs
huaweieulerosnet-snmp-libsp-cpe:/a:huawei:euleros:net-snmp-libs
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:3.0.6.0
huaweieulerosnet-snmpp-cpe:/a:huawei:euleros:net-snmp

Related

osv 16
nessus 49
openvas 40
ubuntu 3
slackware 1
gentoo 1
debian 3
mageia 2
amazon 2
fedora 1
photon 5
oraclelinux 2
rosalinux 1
almalinux 2
redhat 2
ubuntucve 8
debiancve 8
cve 8
cbl_mariner 4
veracode 5
redhatcve 8
alpinelinux 8
prion 2
broadcom 1
ics 1
ibm 1
osv
osv
net-snmp vulnerabilities
2023-01-16 12:18:48
net-snmp - security update
2022-08-16 00:00:00
net-snmp - security update
2022-08-30 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : Net-SNMP vulnerabilities (USN-5795-2)
2023-01-16 00:00:00
EulerOS 2.0 SP8 : net-snmp (EulerOS-SA-2022-2474)
2022-10-09 00:00:00
EulerOS 2.0 SP10 : net-snmp (EulerOS-SA-2022-2660)
2022-11-02 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for net-snmp (EulerOS-SA-2023-2254)
2023-06-12 00:00:00
Ubuntu: Security Advisory (USN-5795-2)
2023-01-17 00:00:00
Huawei EulerOS: Security Advisory for net-snmp (EulerOS-SA-2022-2445)
2022-10-10 00:00:00
ubuntu
ubuntu
Net-SNMP vulnerabilities
2023-01-16 00:00:00
Net-SNMP vulnerabilities
2022-08-01 00:00:00
Net-SNMP vulnerabilities
2023-01-09 00:00:00
slackware
slackware
[slackware-security] net-snmp
2022-07-21 18:23:54
gentoo
gentoo
Net-SNMP: Multiple Vulnerabilities
2022-10-31 00:00:00
debian
debian
[SECURITY] [DLA 3088-1] net-snmp security update
2022-08-30 22:04:00
[SECURITY] [DSA 5209-1] net-snmp security update
2022-08-16 20:07:17
[SECURITY] [DLA 3270-1] net-snmp security update
2023-01-15 02:57:23
mageia
mageia
Updated net-snmp packages fix security vulnerability
2022-08-29 08:07:41
Updated net-snmp packages fix security vulnerability
2023-01-24 10:58:24
amazon
amazon
Medium: net-snmp
2023-11-29 22:20:00
Medium: net-snmp
2024-01-03 21:04:00
fedora
fedora
[SECURITY] Fedora 36 Update: net-snmp-5.9.3-1.fc36
2022-08-09 01:25:47
photon
photon
Moderate Photon OS Security Update - PHSA-2023-3.0-0590
2023-06-01 00:00:00
Moderate Photon OS Security Update - PHSA-2023-4.0-0401
2023-06-02 00:00:00
Moderate Photon OS Security Update - PHSA-2023-4.0-0381
2023-04-26 00:00:00
oraclelinux
oraclelinux
net-snmp security and bug fix update
2023-05-24 00:00:00
net-snmp security and bug fix update
2023-05-15 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2365
2024-03-05 08:36:13
almalinux
almalinux
Moderate: net-snmp security and bug fix update
2023-05-16 00:00:00
Moderate: net-snmp security and bug fix update
2023-05-09 00:00:00
redhat
redhat
(RHSA-2023:2444) Moderate: net-snmp security and bug fix update
2023-05-09 05:11:02
(RHSA-2023:2969) Moderate: net-snmp security and bug fix update
2023-05-16 05:59:27
ubuntucve
ubuntucve
CVE-2022-24808
2022-07-08 00:00:00
CVE-2022-24809
2022-07-08 00:00:00
CVE-2022-24810
2022-07-08 00:00:00
debiancve
debiancve
CVE-2022-44793
2022-11-07 03:15:00
CVE-2022-24809
2024-04-16 20:15:00
CVE-2022-24810
2024-04-16 20:15:00
cve
cve
CVE-2022-44792
2022-11-07 03:15:00
CVE-2022-24809
2024-04-16 20:15:00
CVE-2022-24810
2024-04-16 20:15:00
cbl_mariner
cbl_mariner
CVE-2022-44792 affecting package net-snmp for versions less than 5.9.4-1
2024-05-06 17:48:02
CVE-2022-44792 affecting package net-snmp 5.9-4
2024-05-09 09:06:43
CVE-2022-44793 affecting package net-snmp 5.9-4
2024-05-09 09:06:43
veracode
veracode
Denial Of Service (DoS)
2022-07-25 09:59:51
NULL Pointer Dereference
2022-07-25 08:48:14
Denial Of Service (DoS)
2023-01-19 12:17:31
redhatcve
redhatcve
CVE-2022-24809
2022-07-01 17:56:41
CVE-2022-44792
2022-11-11 04:26:08
CVE-2022-44793
2022-11-11 04:25:59
alpinelinux
alpinelinux
CVE-2022-24810
2024-04-16 20:15:00
CVE-2022-44793
2022-11-07 03:15:00
CVE-2022-24809
2024-04-16 20:15:00
prion
prion
Null pointer dereference
2022-11-07 03:15:00
Null pointer dereference
2022-11-07 03:15:00
broadcom
broadcom
Potential Denial of Service exploit in Net-SNMP 5.8 through 5.9.3
2023-08-01 00:00:00
ics
ics
Siemens SIMATIC MV500
2023-11-16 12:00:00
ibm
ibm
Security Bulletin: IBM Security Verify Governance - Identity Manager has multiple vulnerabilities
2024-04-22 06:05:25
JSON
Related for EULEROS_SA-2023-2254.NASL
osv16nessus49openvas40ubuntu3slackware1gentoo1debian3mageia2amazon2fedora1photon5oraclelinux2rosalinux1almalinux2redhat2ubuntucve8debiancve8cve8cbl_mariner4veracode5redhatcve8alpinelinux8prion2broadcom1ics1ibm1