CVE-2020-6058

Name of the Vulnerable Software and Affected Versions MiniSNMPD version 1.4

Description An out-of-bounds read issue exists in the way MiniSNMPD parses incoming SNMP packets. A specially crafted SNMP request can trigger an out-of-bounds memory read, resulting in the disclosure of sensitive information and denial of service. To trigger this issue, an attacker needs to send a specially crafted packet to the vulnerable server.

Recommendations For MiniSNMPD version 1.4, consider restricting access to the server until a patch is available. As a temporary workaround, avoid using the vulnerable server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.