Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-44792

Опубликовано: 07 нояб. 2022
Источник: redhat
CVSS3: 6.5

Описание

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

A vulnerability was found in Net-SNMP. This issue occurs because the handle_ipDefaultTTL function in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP has a NULL Pointer Exception flaw that allows a remote attacker (who has to write access) to cause the instance to crash via a crafted UDP packet, resulting in a denial of service.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6net-snmpNot affected
Red Hat Enterprise Linux 7net-snmpNot affected
Red Hat Enterprise Linux 8net-snmpFixedRHSA-2023:296916.05.2023
Red Hat Enterprise Linux 8net-snmpFixedRHSA-2023:296916.05.2023
Red Hat Enterprise Linux 9net-snmpFixedRHSA-2023:244409.05.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=2141897net-snmp: NULL Pointer Exception when handling ipDefaultTTL

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-44792

CVSS3: 6.5
ubuntu
больше 2 лет назад

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

nvd логотип

CVE-2022-44792

CVSS3: 6.5
nvd
больше 2 лет назад

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

msrc логотип

CVE-2022-44792

CVSS3: 6.5
msrc
больше 2 лет назад

Описание отсутствует

debian логотип

CVE-2022-44792

CVSS3: 6.5
debian
больше 2 лет назад

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP ...

github логотип

GHSA-pccv-xjc7-m5qv

CVSS3: 6.5
github
больше 2 лет назад

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

6.5 Medium

CVSS3

Уязвимость CVE-2022-44792