CVE-2018-18065
published 2018-10-08CVE-2018-18065: _set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely…
medium6.5CVSS 3.0
AVNACLPRLUINSUCNINAH
EXPLOIT
_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | net-snmp | < net-snmp 5.7.3+dfsg-4 (bookworm) | net-snmp 5.7.3+dfsg-4 (bookworm) |
| net-snmp | net-snmp | < 5.8 | 5.8 |
| net-snmp | net-snmp | >= 0 < 5.7.3+dfsg-4 | 5.7.3+dfsg-4 |
| net-snmp | net-snmp | >= 0 < 5.7.3+dfsg-4 | 5.7.3+dfsg-4 |
| net-snmp | net-snmp | >= 0 < 5.7.3+dfsg-4 | 5.7.3+dfsg-4 |
| net-snmp | net-snmp | >= 0 < 5.7.3+dfsg-4 | 5.7.3+dfsg-4 |
| netapp | e-series_santricity_os_controller | 11.0 – 11.5 | — |
| paloalto | pan-os | — | — |
| paloaltonetworks | pan-os | <= 7.1.22 | — |
| paloaltonetworks | pan-os | 7.1.23 – 8.0.15 | — |
| paloaltonetworks | pan-os | 8.0.16 – 8.1.6 | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv6.5MEDIUM