CVE-2022-24806

CVSS V2 None CVSS V3 None
Description
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write credentials can exploit an Improper Input Validation vulnerability when SETing malformed OIDs in master agent and subagent simultaneously. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range.
Overview
  • CVE ID
  • CVE-2022-24806
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-04-16T19:44:53.414Z
  • Last Modified Date
  • 2024-04-16T19:44:53.414Z
History
Created Old Value New Value Data Type Notes
2024-06-24 17:33:43 Added to TrackCVE