Out of Bounds Read Vulnerability in MiniSNMPD 1.4 Allows Information Disclosure and Denial of Service

Out of Bounds Read Vulnerability in MiniSNMPD 1.4 Allows Information Disclosure and Denial of Service

CVE-2020-6059 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

An exploitable out of bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out of bounds memory read which can result in sensitive information disclosure and Denial Of Service. In order to trigger this vulnerability, an attacker needs to send a specially crafted packet to the vulnerable server.

Learn more about our Cis Benchmark Audit For Server Software.