vulnerability
Oracle Linux: CVE-2020-15862: ELSA-2020-5350: net-snmp security update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Aug 25, 2020 | Nov 19, 2020 | Dec 1, 2024 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Aug 25, 2020
Added
Nov 19, 2020
Modified
Dec 1, 2024
Description
Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root.
A flaw was found in Net-SNMP through version 5.73, where an Improper Privilege Management issue occurs due to SNMP WRITE access to the EXTEND MIB allows running arbitrary commands as root. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
A flaw was found in Net-SNMP through version 5.73, where an Improper Privilege Management issue occurs due to SNMP WRITE access to the EXTEND MIB allows running arbitrary commands as root. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Solution(s)
oracle-linux-upgrade-net-snmporacle-linux-upgrade-net-snmp-agent-libsoracle-linux-upgrade-net-snmp-develoracle-linux-upgrade-net-snmp-libsoracle-linux-upgrade-net-snmp-perloracle-linux-upgrade-net-snmp-utils
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.