CVE-2020-6059

Name of the Vulnerable Software and Affected Versions MiniSNMPD version 1.4

Description An out of bounds read issue exists in the way MiniSNMPD parses incoming SNMP packets. A specially crafted SNMP request can trigger an out of bounds memory read, potentially resulting in sensitive information disclosure and Denial Of Service. To exploit this, an attacker must send a specially crafted packet to the vulnerable server.

Recommendations For MiniSNMPD version 1.4, consider restricting access to the server until a patch is available. As a temporary workaround, limit the exposure of the server to untrusted networks to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.