CVE-2018-18065
net-snmp 5.7.3 - (Authenticated) Denial of Service (PoC)
Severity Score
6.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
_set_key en agent/helpers/table_container.c en Net-SNMP en versiones anteriores a la 5.8 tiene un error de excepción de puntero NULL que puede ser empleado por un atacante autenticado para provocar el cierre inesperado de la instancia de forma remota mediante un paquete UDP manipulado, lo que resulta en una denegación de servicio (DoS).
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2018-10-08 CVE Reserved
- 2018-10-08 CVE Published
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- 2024-10-23 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-476: NULL Pointer Dereference
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/106265 | Third Party Advisory | |
| https://cert-portal.siemens.com/productcert/pdf/ssa-978220.pdf | X_refsource_confirm |
|
| https://security.netapp.com/advisory/ntap-20181107-0001 | Third Party Advisory |
|
| https://security.paloaltonetworks.com/CVE-2018-18065 | X_refsource_confirm | |
| https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html | X_refsource_misc |
|
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/45547 | 2024-08-05 | |
| https://dumpco.re/blog/net-snmp-5.7.3-remote-dos | 2024-08-05 |
| URL | Date | SRC |
|---|---|---|
| https://sourceforge.net/p/net-snmp/code/ci/7ffb8e25a0db851953155de91f0170e9bf8c457d | 2019-10-16 |
| URL | Date | SRC |
|---|---|---|
| https://usn.ubuntu.com/3792-1 | 2019-10-16 | |
| https://usn.ubuntu.com/3792-2 | 2019-10-16 | |
| https://usn.ubuntu.com/3792-3 | 2019-10-16 | |
| https://www.debian.org/security/2018/dsa-4314 | 2019-10-16 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Net-snmp Search vendor "Net-snmp" | Net-snmp Search vendor "Net-snmp" for product "Net-snmp" | < 5.8 Search vendor "Net-snmp" for product "Net-snmp" and version " < 5.8" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 9.0 Search vendor "Debian" for product "Debian Linux" and version "9.0" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 12.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.04" | esm |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 14.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "14.04" | lts |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 16.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "16.04" | lts |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 18.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "18.04" | lts |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 18.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "18.10" | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Cloud Backup Search vendor "Netapp" for product "Cloud Backup" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Hyper Converged Infrastructure Search vendor "Netapp" for product "Hyper Converged Infrastructure" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Storagegrid Webscale Search vendor "Netapp" for product "Storagegrid Webscale" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Data Ontap Search vendor "Netapp" for product "Data Ontap" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | E-series Santricity Os Controller Search vendor "Netapp" for product "E-series Santricity Os Controller" | >= 11.0 <= 11.5 Search vendor "Netapp" for product "E-series Santricity Os Controller" and version " >= 11.0 <= 11.5" | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Solidfire Element Os Search vendor "Netapp" for product "Solidfire Element Os" | - | - |
Affected
| ||||||
| Paloaltonetworks Search vendor "Paloaltonetworks" | Pan-os Search vendor "Paloaltonetworks" for product "Pan-os" | <= 7.1.22 Search vendor "Paloaltonetworks" for product "Pan-os" and version " <= 7.1.22" | - |
Affected
| ||||||
| Paloaltonetworks Search vendor "Paloaltonetworks" | Pan-os Search vendor "Paloaltonetworks" for product "Pan-os" | >= 7.1.23 <= 8.0.15 Search vendor "Paloaltonetworks" for product "Pan-os" and version " >= 7.1.23 <= 8.0.15" | - |
Affected
| ||||||
| Paloaltonetworks Search vendor "Paloaltonetworks" | Pan-os Search vendor "Paloaltonetworks" for product "Pan-os" | >= 8.0.16 <= 8.1.6 Search vendor "Paloaltonetworks" for product "Pan-os" and version " >= 8.0.16 <= 8.1.6" | - |
Affected
| ||||||