Moderate: net-snmp security update

The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command...

The vulnerability of the nsVacmAccessTable() function in the OID Handler component of the Linux operating system’s software suite allows a attacker to compromise data integrity.

The vulnerability of the nsVacmAccessTable function in the OID Handler component of the Net-SNMP software suite for the Linux operating system is related to the assignment of the NULL pointer. Exploitation of this vulnerability could allow an attacker to compromise data integrity...

The vulnerability of the nsVacmAccessTable() function in the OID Handler component of the Linux operating system’s software suite allows a attacker to compromise data integrity.

The vulnerability of the nsVacmAccessTable function in the OID Handler component of the Net-SNMP software suite for the Linux operating system is related to the assignment of the NULL pointer. Exploitation of this vulnerability could allow an attacker to compromise data integrity...

ALPINE-CVE-2022-24810

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write credentials can use a malformed OID in a SET to the nsVacmAccessTable to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users should use strong...

DEBIAN-CVE-2022-24809

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only credentials can use a malformed OID in a GET-NEXT to the nsVacmAccessTable to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users should use strong...

CVE-2022-24810

Net-snmp vulnerability CVE-2022-24810: A malformed OID in a SET to NET-SNMP’s VACM nsVacmAccessTable can cause a NULL pointer dereference. Affected are versions prior to 5.9.2; 5.9.2 contains a patch. Mitigations: upgrade to 5.9.2+ and restrict access; use strong SNMPv3 credentials and limit IP a...

CVE-2022-24809

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only credentials can use a malformed OID in a GET-NEXT to the nsVacmAccessTable to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users should use strong...

EulerOS Virtualization 2.9.1 : net-snmp (EulerOS-SA-2023-1198)

According to the versions of the net-snmp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds...

GLSA-202210-29 : Net-SNMP: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202210-29 Net-SNMP: Multiple Vulnerabilities - The vulnerability exists due to a boundary error when handling INDEX of NET-SNMP-VACM-MIB. A remote attacker can trick the victim into loading a specially crafted MIB collection,...

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS attacks. The vulnerability exists due to a NULL pointer dereference error in nsVacmAccessTable when handling malformed OID in GET-NEXT. A remote user is able to pass specially crafted data to the application and perform a denial of service DoS...

NULL Pointer Dereference

net-snmp is vulnerable to NULL pointer dereference. The vulnerability exists via a malformed OID in a SET being sent to the nsVacmAccessTable function which allows an attacker to cause an application crash...

UBUNTU-CVE-2022-24810

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write credentials can use a malformed OID in a SET to the nsVacmAccessTable to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users should use strong...

Net-SNMP 代码问题漏洞

Net-SNMP is an open source Simple Network Management Protocol SNMP software. The software is used to monitor network devices, computer devices, UPS devices, and more. A code issue vulnerability exists in Net-SNMP that stems from a misformatted OID in GET-NEXT of nsVacmAccessTable that could resul...

PT-2022-7449 · Net Snmp +8 · Net-Snmp +8

Name of the Vulnerable Software and Affected Versions: net-snmp versions prior to 5.9.2 Description: The issue is related to a NULL pointer dereference in the nsVacmAccessTable function. A user with read-only credentials can exploit this by using a malformed OID in a GET-NEXT request to cause the...