Lucene search

K

Redhat.comRH:CVE-2022-44793

HistoryNov 11, 2022 - 4:25 a.m.

CVE-2022-44793

2022-11-1104:25:59

redhat.com

access.redhat.com

13

net-snmp

flaw

denial of service

remote attacker

udp packet

null pointer exception

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

71.0%

A flaw was found in Net-SNMP. This issue occurs because the handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP has a NULL Pointer Exception that could allow a remote attacker to cause the instance to crash via a crafted UDP packet, resulting in a denial of service.

References

bugzilla.redhat.com/show_bug.cgi?id=2141898

nvd.nist.gov/vuln/detail/CVE-2022-44793

www.cve.org/CVERecord?id=CVE-2022-44793

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

71.0%

Related for RH:CVE-2022-44793

nvd1 debiancve1 alpinelinux1 veracode1 cbl_mariner3 cve1 osv6 cvelist1 amazon1 prion1 nessus32 openvas20 mageia1 almalinux2 redhat2 debian1 ubuntu2 oraclelinux2 rosalinux1 ubuntucve1 photon3 ics2 ibm1