Net-SNMP Vulnerability Enables Buffer Overflow and the Daemon to Crash
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
A new critical vulnerability affecting the Net-SNMP software suite has been disclosed, posing a significant risk to network infrastructure worldwide.<\/p>\n
Tracked as\u00a0CVE-2025-68615, this security flaw allows remote attackers to trigger a buffer overflow<\/a>, leading to a service crash or potentially a more severe system compromise.<\/p>\n The vulnerability resides specifically in the\u00a0snmptrapd\u00a0daemon, which receives and processes SNMP trap messages.<\/p>\n Net-SNMP is a widely deployed protocol suite used for monitoring<\/a> network devices such as routers, switches, and servers.<\/p>\n Because this software is widely used in enterprise environments, the scope of this threat is extensive. The issue stems from improper handling of incoming packets.<\/p>\n According to GitHub advisories, a threat actor can exploit this by sending a \u201cspecially crafted packet\u201d to a vulnerable\u00a0snmptrapd\u00a0instance.<\/p>\n When the daemon<\/a> attempts to process this malformed data, it triggers a buffer overflow.<\/p>\n While the primary description notes that this causes the daemon to crash (Denial-of-Service<\/a>), the severity metrics suggest a more serious possibility.<\/p>\n The vulnerability has been assigned a\u00a0CVSS score of 9.8 (Critical). The metrics indicate \u201cHigh\u201d impact on Confidentiality, Integrity, and Availability.<\/p>\n In cybersecurity terms, a buffer overflow with these ratings often implies that an attacker could do more than crash the server; they might be able to execute arbitrary code remotely (RCE<\/a>).<\/p>\n Effectively taking control of the affected system without needing a password or user interaction. A researcher discovered the vulnerability in collaboration with the\u00a0Trend Micro Zero Day<\/a> Initiative.<\/p>\n The maintainers of Net-SNMP have released patches to address this flaw. Administrators are urged to upgrade immediately to\u00a0version 5.9.5\u00a0or\u00a05.10. pre2.<\/p>\n According to the\u00a0advisory<\/a> published\u00a0for organizations unable to apply patches immediately, the primary workaround is network segmentation.<\/span> <\/p>\n SNMP ports should never be exposed to the public internet. Ensuring that firewalls<\/a> block external access to the\u00a0snmptrapd\u00a0port effectively mitigates the risk of remote exploitation.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post Net-SNMP Vulnerability Enables Buffer Overflow and the Daemon to Crash<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\n