Lucene search
K

28 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:26 p.m.50 views

K17378: SNMP vulnerability CVE-2015-5621

Security Advisory Description The snmppduparse function in snmpapi.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmpvariablelist item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary...

7.5CVSS8.6AI score0.40002EPSS
Exploits1Affected Software23
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/17 1:37 p.m.54 views

Security Bulletin: Vulnerability in Net-SNMP affects Netcool/OMNIbus SNMP Probe (CVE-2015-5621)

Summary Netcool/OMNIbus SNMP Probe is vulnerable to a denial of service, caused by Net-SNMP. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by incompletely parsed varBind variables being left in the list of variables by the snmppdupar...

7.5CVSS8.6AI score0.40002EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/23 7:48 p.m.88 views

Security Bulletin: A vulnerability in net-snmp affects IBM Security Network Intrusion Prevention System (CVE-2015-5621)

Summary The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP.One security vulnerability has been discovered in net-snmp used with IBM Security Network Intrusion Prevention System. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP...

7.5CVSS9AI score0.40002EPSS
Exploits1Affected Software1
Rosalinux
Rosalinux
added 2021/07/02 5:32 p.m.47 views

Advisory ROSA-SA-2021-1929

Software: net-snmp 5.7.2 OS: Cobalt 7.9 CVE-ID: CVE-2014-2284 CVE-Crit: HIGH CVE-DESC: The Linux implementation of ICMP-MIB in Net-SNMP 5.5 through 5.5.2.1, 5.6.x through 5.6.2.1, and 5.7.x through 5.7.2.1 incorrectly validates input, allowing remote attackers to cause a denial of service via...

9.8CVSS8.8AI score0.40002EPSS
Exploits6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2015:1556-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.40002EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.61 views

Huawei EulerOS: Security Advisory for net-snmp (EulerOS-SA-2019-1436)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.40002EPSS
Exploits3References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/28 4:30 a.m.35 views

Security Bulletin: IBM Security Guardium is affected by a Using Components with Known Vulnerabilities vulnerabilities

Summary IBM Security Guardium has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2015-8100 DESCRIPTION: OpenBSD could allow a local attacker to obtain sensitive information, caused by the use of 0644 permissions for snmpd.conf by the net-snmp package. By reading the fil...

7.5CVSS1.3AI score0.40002EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:29 a.m.36 views

Security Bulletin: A security vulnerability with net-snmp affects IBM Flex System Manager (CVE-2015-5621)

Summary A security vulnerability has been identified in net-snmp that is used by IBM Flex System Manager FSM. This bulletin addresses this vulnerability. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by incompletely parsed varBind...

7.5CVSS1AI score0.40002EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:38 p.m.57 views

Security Bulletin: Vulnerabilities in Net-SNMP affect IBM Security Access Manager for Web (CVE-2014-3565, CVE-2015-5621)

Summary IBM Security Access Manager for Web is affected by denial of service vulnerabilities in Net-SNMP. Vulnerability Details CVEID: CVE-2014-3565 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by the improper handling of SNMP traps when started with the "-OQ" option. By...

7.5CVSS1.3AI score0.40002EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:30 p.m.34 views

Security Bulletin: A vulnerability in net-snmp affects IBM Security Network Protection (CVE-2015-5621)

Summary The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP.One security vulnerability has been discovered in net-snmp used with IBM Security Network Protection. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to...

7.5CVSS1.7AI score0.40002EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:4 a.m.27 views

Security Bulletin: A vulnerability in net-snmp affects IBM DataPower Gateways (CVE-2015-5621)

Summary IBM DataPower gateways has addressed a vulnerability in SNMP parsing routines that could cause the SNMP daemon to crash or execute arbitrary code. Vulnerability Details CVEID: CVE-2015-5621 DESCRIPTION: Net-SNMP is vulnerable to a denial of service, caused by incompletely parsed varBind...

7.5CVSS2.6AI score0.40002EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/03/29 12:0 a.m.33 views

Debian DSA-4154-1 : net-snmp - security update

A heap corruption vulnerability was discovered in net-snmp, a suite of Simple Network Management Protocol applications, triggered when parsing the PDU prior to the authentication process. A remote, unauthenticated attacker can take advantage of this flaw to crash the snmpd process causing a denia...

9.8CVSS7.7AI score0.40002EPSS
Exploits2References7
Debian
Debian
added 2018/03/28 9:21 a.m.37 views

[SECURITY] [DSA 4154-1] net-snmp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4154-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 28, 2018 https://www.debian.org/security/faq -...

9.8CVSS9.3AI score0.40002EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2016/01/14 12:0 a.m.42 views

F5 Networks BIG-IP : SNMP vulnerability (K17378)

The snmppduparse function in snmpapi.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmpvariablelist item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted packet...

7.5CVSS8AI score0.40002EPSS
Exploits1References2
Cloud Foundry
Cloud Foundry
added 2015/10/07 12:0 a.m.54 views

USN-2711-1 Net-SNMP Vulnerabilities | Cloud Foundry

USN-2711-1 Net-SNMP Vulnerabilities Low to Medium Vendor Canonical Ubuntu Versions Affected libsnmp30 5.7.2dfsg-8.1ubuntu3.1 Description Net-SNMP could be made to crash or run programs if it received specially crafted network traffic. It was discovered that Net-SNMP incorrectly handled certain tr...

7.5CVSS8.9AI score0.40002EPSS
Exploits2
F5 Networks
F5 Networks
added 2015/10/07 12:0 a.m.64 views

SOL17378 - SNMP vulnerability CVE-2015-5621

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS2.1AI score0.40002EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2015/09/08 12:0 a.m.39 views

openSUSE Security Update : net-snmp (openSUSE-2015-568)

net-snmp was updated to fix one secuirty vulnerability and 2 bugs. - Fix an incompletely initialized vulnerability within the snmppduparse function of snmpapi.c. bnc940188, CVE-2015-5621 - Add build requirement 'procps' to fix a net-snmp-config error. bsc935863 - Stop snmptrapd on removal...

7.5CVSS7.5AI score0.40002EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.30 views

Amazon Linux: Security Advisory (ALAS-2015-590)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.40002EPSS
Exploits1References2
Amazon
Amazon
added 2015/09/02 12:0 a.m.39 views

Medium: net-snmp

Issue Overview: It was discovered that the snmppduparse function could leave incompletely parsed varBind variables in the list of variables. A remote, unauthenticated attacker could use this flaw to crash snmpd or, potentially, execute arbitrary code on the system with the privileges of the user...

7.5CVSS8.8AI score0.40002EPSS
Exploits1References1
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.86 views

[USN-2711-1] Net-SNMP vulnerabilities

========================================================================== Ubuntu Security Notice USN-2711-1 August 17, 2015 net-snmp vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.5CVSS0.7AI score0.40002EPSS
Exploits2
Rows per page
Query Builder