18 matches found
CLSA-2026-1776765273 net-snmp: Fix of CVE-2022-24810
CVE-2022-24810: fix NULL pointer dereference and bounds checking in MIB handlers...
EUVD-1999-1494
Malware in sbrugna...
PT-2025-35099
Name of the Vulnerable Software and Affected Versions: Nagios XI versions prior to 2024R1.3.2 Description: Nagios XI is susceptible to remote code execution due to chained flaws: an arbitrary file upload and a path traversal within the Core Config Snapshots interface. Insufficient validation of...
Linux Distros Unpatched Vulnerability : CVE-2020-14947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mptcp: handles DDS corruption consistently. The buggy peer implementation can send corrupted DSS options, consistently causing several warnings in the data path. Use DEBUGNET assertions to avoid errors on some builds and to handl...
net-snmp: A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access.
A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access issue...
CVE-2023-22401
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...
CVE-2022-38250
Nagios XI v5.8.6 was discovered to contain a SQL injection vulnerability via the mibname parameter at the Manage MIBs page...
Net-SNMP 缓冲区错误漏洞
Net-SNMP is an open source Simple Network Management Protocol SNMP software. The software is used to monitor network devices, computer devices, UPS devices, and more. Net-SNMP suffers from a buffer error vulnerability that stems from a buffer overflow in the INDEX handling of NET-SNMP-VACM-MIB th...
Ipswitch WhatsUp Gold Code Injection Vulnerability
Ipswitch WhatsUp Gold is a suite of unified infrastructure and application monitoring software from Ipswitch USA. The software supports management of network, server, virtual environment and application performance, among other things. A code injection vulnerability exists in the...
CVE-2018-8938
A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 18.0. Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands and code on the WhatsUp Gold server...
CVE-2018-8938
A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 18.0. Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands and code on the WhatsUp Gold server...
HP Intelligent Management Center Arbitrary Directory Deletion Vulnerability
HP Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Fault, Configuration, Accounting, Performance and Security FCAPS model. An arbitrary directory deletion vulnerability exists in HP Intelligent Management Center, where a remote...
The vulnerability of the Simple Network Management Protocol (SNMP) subsystem of the Cisco IOS operating system, which allows a hacker to inject code or trigger a system reboot.
Many vulnerabilities in the Simple Network Management Protocol SNMP subsystem of the Cisco IOS operating system are caused by buffer overflows. Exploiting these vulnerabilities allows a malicious actor to inject code into the system or cause it to restart by sending specially created SNMP packets...
SNMP String Bypass Vulnerability in Two ZTE ZXSS10 Voice Gateway Integrated Access Devices
ZXSS10 I524-FXS2400A and ZXSS10 I508-FXS0800B are two voice gateway integrated access devices from ZTE. An SNMP string bypass vulnerability exists in the ZTE ZXSS10 two voice gateway integrated access devices. An attacker can bypass SNMP access control by using arbitrary strings or integer values...
Linksys WAP55AG 1.0.7 SNMP Community String Insecure Configuration Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9688/info Linksys WAP55AG appliance has been reported prone to an insecure default configuration vulnerability. It has been reported that all SNMP MIB Management Information Base community strings, even read/write strings...
security flaw
Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed...
DEBIAN-CVE-2003-0935
Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed...