Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCanonical Ubuntu
OSCanonical12.0414.0416.0418.0420.04Netapp Cloud Backup
APPNetappwszystkie wersjeNetapp Hci Management Node
APPNetappwszystkie wersjeNetapp Smi S Provider
APPNetappwszystkie wersjeNetapp Solidfire
APPNetappwszystkie wersjeNet Snmp
APPNet-Snmp< 5.8.1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References
Related vulnerabilities
CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
CVE-2022-0543CRITICAL10.0⚠ KEVten sam produkt
It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debia...
CVE-2021-42013CRITICAL9.8⚠ KEVten sam produkt
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could ...
CVE-2021-41773CRITICAL9.8⚠ KEVten sam produkt
A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a ...
CVE-2021-40438CRITICAL9.0⚠ KEVten sam produkt
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...