Lucene search
K

28 matches found

f5
f5
added 2023/02/21 6:26 p.m.50 views

K17378: SNMP vulnerability CVE-2015-5621

Security Advisory Description The snmppduparse function in snmpapi.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmpvariablelist item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary...

7.5CVSS8.6AI score0.40002EPSS
Exploits1Affected Software23
ibm
ibm
added 2022/10/17 1:37 p.m.54 views

Security Bulletin: Vulnerability in Net-SNMP affects Netcool/OMNIbus SNMP Probe (CVE-2015-5621)

Summary Netcool/OMNIbus SNMP Probe is vulnerable to a denial of service, caused by Net-SNMP. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by incompletely parsed varBind variables being left in the list of variables by the snmppdupar...

7.5CVSS8.6AI score0.40002EPSS
Exploits1Affected Software1
ibm
ibm
added 2022/02/23 7:48 p.m.88 views

Security Bulletin: A vulnerability in net-snmp affects IBM Security Network Intrusion Prevention System (CVE-2015-5621)

Summary The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP.One security vulnerability has been discovered in net-snmp used with IBM Security Network Intrusion Prevention System. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP...

7.5CVSS9AI score0.40002EPSS
Exploits1Affected Software1
rosalinux
rosalinux
added 2021/07/02 5:32 p.m.53 views

Advisory ROSA-SA-2021-1929

Software: net-snmp 5.7.2 OS: Cobalt 7.9 CVE-ID: CVE-2014-2284 CVE-Crit: HIGH CVE-DESC: The Linux implementation of ICMP-MIB in Net-SNMP 5.5 through 5.5.2.1, 5.6.x through 5.6.2.1, and 5.7.x through 5.7.2.1 incorrectly validates input, allowing remote attackers to cause a denial of service via...

9.8CVSS8.8AI score0.40002EPSS
Exploits6
openvas
openvas
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2015:1556-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.40002EPSS
Exploits1References8
openvas
openvas
added 2020/01/23 12:0 a.m.61 views

Huawei EulerOS: Security Advisory for net-snmp (EulerOS-SA-2019-1436)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.40002EPSS
Exploits3References2
ibm
ibm
added 2018/09/28 4:30 a.m.35 views

Security Bulletin: IBM Security Guardium is affected by a Using Components with Known Vulnerabilities vulnerabilities

Summary IBM Security Guardium has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2015-8100 DESCRIPTION: OpenBSD could allow a local attacker to obtain sensitive information, caused by the use of 0644 permissions for snmpd.conf by the net-snmp package. By reading the fil...

7.5CVSS1.3AI score0.40002EPSS
Exploits4Affected Software1
ibm
ibm
added 2018/06/18 1:29 a.m.36 views

Security Bulletin: A security vulnerability with net-snmp affects IBM Flex System Manager (CVE-2015-5621)

Summary A security vulnerability has been identified in net-snmp that is used by IBM Flex System Manager FSM. This bulletin addresses this vulnerability. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by incompletely parsed varBind...

7.5CVSS1AI score0.40002EPSS
Exploits1Affected Software1
ibm
ibm
added 2018/06/16 9:38 p.m.57 views

Security Bulletin: Vulnerabilities in Net-SNMP affect IBM Security Access Manager for Web (CVE-2014-3565, CVE-2015-5621)

Summary IBM Security Access Manager for Web is affected by denial of service vulnerabilities in Net-SNMP. Vulnerability Details CVEID: CVE-2014-3565 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by the improper handling of SNMP traps when started with the "-OQ" option. By...

7.5CVSS1.3AI score0.40002EPSS
Exploits2Affected Software1
ibm
ibm
added 2018/06/16 9:30 p.m.34 views

Security Bulletin: A vulnerability in net-snmp affects IBM Security Network Protection (CVE-2015-5621)

Summary The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP.One security vulnerability has been discovered in net-snmp used with IBM Security Network Protection. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to...

7.5CVSS1.7AI score0.40002EPSS
Exploits1Affected Software1
ibm
ibm
added 2018/06/15 7:4 a.m.27 views

Security Bulletin: A vulnerability in net-snmp affects IBM DataPower Gateways (CVE-2015-5621)

Summary IBM DataPower gateways has addressed a vulnerability in SNMP parsing routines that could cause the SNMP daemon to crash or execute arbitrary code. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by incompletely parsed varBind...

7.5CVSS2.6AI score0.40002EPSS
Exploits1Affected Software1
nessus
nessus
added 2018/03/29 12:0 a.m.33 views

Debian DSA-4154-1 : net-snmp - security update

A heap corruption vulnerability was discovered in net-snmp, a suite of Simple Network Management Protocol applications, triggered when parsing the PDU prior to the authentication process. A remote, unauthenticated attacker can take advantage of this flaw to crash the snmpd process causing a denia...

9.8CVSS7.7AI score0.40002EPSS
Exploits2References7
debian
debian
added 2018/03/28 9:21 a.m.41 views

[SECURITY] [DSA 4154-1] net-snmp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4154-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 28, 2018 https://www.debian.org/security/faq -...

9.8CVSS9.3AI score0.40002EPSS
Exploits2
nessus
nessus
added 2016/01/14 12:0 a.m.42 views

F5 Networks BIG-IP : SNMP vulnerability (K17378)

The snmppduparse function in snmpapi.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmpvariablelist item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted packet...

7.5CVSS8AI score0.40002EPSS
Exploits1References2
f5
f5
added 2015/10/07 12:0 a.m.64 views

SOL17378 - SNMP vulnerability CVE-2015-5621

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS2.1AI score0.40002EPSS
Exploits1References8
cloudfoundry
cloudfoundry
added 2015/10/07 12:0 a.m.54 views

USN-2711-1 Net-SNMP Vulnerabilities | Cloud Foundry

USN-2711-1 Net-SNMP Vulnerabilities Low to Medium Vendor Canonical Ubuntu Versions Affected libsnmp30 5.7.2dfsg-8.1ubuntu3.1 Description Net-SNMP could be made to crash or run programs if it received specially crafted network traffic. It was discovered that Net-SNMP incorrectly handled certain tr...

7.5CVSS8.9AI score0.40002EPSS
Exploits2
openvas
openvas
added 2015/09/08 12:0 a.m.30 views

Amazon Linux: Security Advisory (ALAS-2015-590)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.40002EPSS
Exploits1References2
nessus
nessus
added 2015/09/08 12:0 a.m.39 views

openSUSE Security Update : net-snmp (openSUSE-2015-568)

net-snmp was updated to fix one secuirty vulnerability and 2 bugs. - Fix an incompletely initialized vulnerability within the snmppduparse function of snmpapi.c. bnc940188, CVE-2015-5621 - Add build requirement 'procps' to fix a net-snmp-config error. bsc935863 - Stop snmptrapd on removal...

7.5CVSS7.5AI score0.40002EPSS
Exploits1References3
amazon
amazon
added 2015/09/02 12:0 a.m.39 views

Medium: net-snmp

Issue Overview: It was discovered that the snmppduparse function could leave incompletely parsed varBind variables in the list of variables. A remote, unauthenticated attacker could use this flaw to crash snmpd or, potentially, execute arbitrary code on the system with the privileges of the user...

7.5CVSS8.8AI score0.40002EPSS
Exploits1References1
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.86 views

[USN-2711-1] Net-SNMP vulnerabilities

========================================================================== Ubuntu Security Notice USN-2711-1 August 17, 2015 net-snmp vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.5CVSS0.7AI score0.40002EPSS
Exploits2
Rows per page
Query Builder