CVE-2018-18066

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
Configurations

Configuration 1 (hide)

cpe:2.3:a:net-snmp:net-snmp:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:hyper_converged_infrastructure:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:storagegrid_webscale:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:data_ontap:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
cpe:2.3:o:netapp:solidfire_element_os:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-10-08 18:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-18066

Mitre link : CVE-2018-18066

CVE.ORG link : CVE-2018-18066


JSON object : View

Products Affected

netapp

  • e-series_santricity_os_controller
  • cloud_backup
  • storagegrid_webscale
  • hyper_converged_infrastructure
  • solidfire_element_os
  • data_ontap

net-snmp

  • net-snmp
CWE
CWE-476

NULL Pointer Dereference