9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.924 High
EPSS
Percentile
98.5%
The net-snmp packages provide various libraries and tools for the Simple
Network Management Protocol (SNMP), including an SNMP library, an
extensible agent, tools for requesting or setting information from SNMP
agents, tools for generating and handling SNMP traps, a version of the
netstat command which uses SNMP, and a Tk/Perl Management Information Base
(MIB) browser.
It was discovered that the snmp_pdu_parse() function could leave
incompletely parsed varBind variables in the list of variables. A remote,
unauthenticated attacker could use this flaw to crash snmpd or,
potentially, execute arbitrary code on the system with the privileges of
the user running snmpd. (CVE-2015-5621)
Red Hat would like to thank Qinghao Tang of QIHU 360 company, China for
reporting this issue.
All net-snmp users are advised to upgrade to these updated packages,
which contain a backported patch to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | x86_64 | net-snmp-python | < 5.7.2-20.el7_1.1 | net-snmp-python-5.7.2-20.el7_1.1.x86_64.rpm |
RedHat | 6 | s390x | net-snmp-debuginfo | < 5.5-54.el6_7.1 | net-snmp-debuginfo-5.5-54.el6_7.1.s390x.rpm |
RedHat | 7 | ppc64 | net-snmp-agent-libs | < 5.7.2-20.el7_1.1 | net-snmp-agent-libs-5.7.2-20.el7_1.1.ppc64.rpm |
RedHat | 7 | ppc64 | net-snmp-devel | < 5.7.2-20.el7_1.1 | net-snmp-devel-5.7.2-20.el7_1.1.ppc64.rpm |
RedHat | 7 | s390x | net-snmp-utils | < 5.7.2-20.el7_1.1 | net-snmp-utils-5.7.2-20.el7_1.1.s390x.rpm |
RedHat | 6 | ppc64 | net-snmp-perl | < 5.5-54.el6_7.1 | net-snmp-perl-5.5-54.el6_7.1.ppc64.rpm |
RedHat | 6 | x86_64 | net-snmp-devel | < 5.5-54.el6_7.1 | net-snmp-devel-5.5-54.el6_7.1.x86_64.rpm |
RedHat | 6 | s390x | net-snmp-devel | < 5.5-54.el6_7.1 | net-snmp-devel-5.5-54.el6_7.1.s390x.rpm |
RedHat | 7 | x86_64 | net-snmp-devel | < 5.7.2-20.el7_1.1 | net-snmp-devel-5.7.2-20.el7_1.1.x86_64.rpm |
RedHat | 7 | ppc64 | net-snmp-utils | < 5.7.2-20.el7_1.1 | net-snmp-utils-5.7.2-20.el7_1.1.ppc64.rpm |
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.924 High
EPSS
Percentile
98.5%