Attacker Value
High
(1 user assessed)
Exploitability
Very High
(1 user assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

Net-SNMPd Write Access SNMP-EXTEND-MIB arbitrary code execution (authenticated)

Last updated February 13, 2020
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Targets running Net-SNMPd may be vulnerable to remote code execution. If the service user has R/W access and the attacker knows the SNMP community string value, then the attacker can manipulate the target’s SNMP extension MIBs (SNMP-EXTEND-MIB) to enable and achieve remote code execution on the target.

Add Assessment

1
Ratings
  • Attacker Value
    High
  • Exploitability
    Very High
Technical Analysis

Unclear if this has been officially patched yet in Net-SNMPd (there are reports that the most-current version is still vulnerable).

One way to remediate would be to set access to READ ONLY instead of READ/WRITE.

General Information

Additional Info

Technical Analysis