net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write credentials can exploit an Improper Input Validation vulnerability when SETing malformed OIDs in master agent and subagent simultaneously. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range.
History

Thu, 10 Oct 2024 14:15:00 +0000

Type Values Removed Values Added
First Time appeared Redhat rhel Eus
CPEs cpe:/a:redhat:rhel_eus:9.2
Vendors & Products Redhat rhel Eus

Fri, 27 Sep 2024 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-04-16T19:44:53.414Z

Updated: 2024-08-03T04:20:50.548Z

Reserved: 2022-02-10T16:41:34.917Z

Link: CVE-2022-24806

cve-icon Vulnrichment

Updated: 2024-08-03T04:20:50.548Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-16T20:15:08.413

Modified: 2024-04-17T12:48:31.863

Link: CVE-2022-24806

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-07-01T00:00:00Z

Links: CVE-2022-24806 - Bugzilla