PT-2022-3838 · Net Snmp+8 · Net-Snmp+8

Nanyu Zhong

+1

·

Published

2022-02-25

·

Updated

2025-01-17

·

CVE-2022-24806

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions net-snmp versions prior to 5.9.2
Description The issue is related to an Improper Input Validation vulnerability in net-snmp, which can be exploited by a user with read-write credentials when setting malformed OIDs in the master agent and subagent simultaneously. This can allow a remote attacker to execute arbitrary actions. Users should use strong SNMPv3 credentials and avoid sharing them. For those who must use SNMPv1 or SNMPv2c, using a complex community string and restricting access to a given IP address range can enhance protection.
Recommendations For versions prior to 5.9.2, update to version 5.9.2 or later to patch the vulnerability. As a temporary workaround, consider using strong SNMPv3 credentials and avoiding shared credentials. Restrict access to a given IP address range to minimize the risk of exploitation for users of SNMPv1 or SNMPv2c. Use a complex community string for additional protection when using SNMPv1 or SNMPv2c.

Exploit

Fix

SQL injection

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-89CWE-20

Related Identifiers

ALSA-2023_2444
ALSA-2023_2969
ALSA-2024:7260
ALSA-2024_7260
BDU:2022-04637
CVE-2022-24806
DLA-3088-1
DSA-5209-1
ELSA-2024-7260
INFSA-2024_7260
MGASA-2022-0311
OESA-2022-1888
OPENSUSE-SU-2022_4205-1
OPENSUSE-SU-2024:12174-1
RHSA-2024:7260
RHSA-2024:7875
RHSA-2024_7260
RLSA-2024:7260
RLSA-2024_7260
SUSE-RU-2024:0029-1
SUSE-SU-2022:4205-1
SUSE-SU-2022:4205-2
SUSE-SU-2022_4205-1
USN-5543-1
USN-5795-2

Affected Products

Almalinux
Astra Linux
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Net-Snmp