CVE-2020-6059
8.2
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Summary
An exploitable out of bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out of bounds memory read which can result in sensitive information disclosure and Denial Of Service. In order to trigger this vulnerability, an attacker needs to send a specially crafted packet to the vulnerable server.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Mini-SNMPD | Mini-SNMPD 1.4 | affected |
Weaknesses
- Integer Overflow or Wraparound
ADP Enrichment
CVE Program Container
Additional References
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0976
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-0976
References
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0976
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-0976
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.