CVE-2020-6059

high

Description

An exploitable out of bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out of bounds memory read which can result in sensitive information disclosure and Denial Of Service. In order to trigger this vulnerability, an attacker needs to send a specially crafted packet to the vulnerable server.

References

https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-0976

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0976

Details

Source: Mitre, NVD

Published: 2020-02-04

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 8.2

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Severity: High

EPSS

EPSS: 0.00238