CVE-2020-6058

Summary

An exploitable out-of-bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out-of-bounds memory read, which can result in the disclosure of sensitive information and denial of service. To trigger this vulnerability, an attacker needs to send a specially crafted packet to the vulnerable server.

Affected Software

VendorProductVersion RangeStatus
n/aMini-SNMPDMini-SNMPD 1.4affected

Weaknesses

  • Integer Overflow or Wraparound

ADP Enrichment

CVE Program Container

Additional References

References