Net-snmp

This hub aggregates every CVE we track for Net-snmp, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Net-snmp.

• CVE-2025-68615Net-SNMP snmptrapd crash9.8Dec 22, 2025
• CVE-2022-24810net-snmp: A malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer dereference.6.5Apr 16, 2024
• CVE-2022-24809net-snmp: A malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference6.5Apr 16, 2024
• CVE-2022-24808net-snmp: A malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference6.5Apr 16, 2024
• CVE-2022-24807net-snmp: A malformed OID in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an out-of-bounds memory access6.5Apr 16, 2024
• CVE-2022-24806net-snmp vulnerable to Improper Input Validation when SETing malformed OIDs in master agent and subagent simultaneously6.5Apr 16, 2024
• CVE-2022-24805net-snmp: A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access.6.5Apr 16, 2024
• CVE-2022-44792handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the in...6.5Nov 7, 2022
• CVE-2022-44793handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash v...6.5Nov 7, 2022
• CVE-2020-15861Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following.7.8Aug 19, 2020
• CVE-2020-15862Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root.7.8Aug 19, 2020
• CVE-2019-20892net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple ...6.5Jun 25, 2020
• CVE-2018-18065_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a craft...6.5Oct 8, 2018
• CVE-2018-18066snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted ...7.5Oct 8, 2018
• CVE-2018-1000116NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execution.9.8Mar 7, 2018