Insecure Permissions in net-snmp Package Allow Unauthorized Access to snmpd.conf

Insecure Permissions in net-snmp Package Allow Unauthorized Access to snmpd.conf

CVE-2015-8100 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file.

Learn more about our User Device Pen Test.