{ "document" : { "aggregate_severity" : { "text" : "mittel" }, "category" : "csaf_base", "csaf_version" : "2.0", "distribution" : { "tlp" : { "label" : "WHITE", "url" : "https://www.first.org/tlp/" } }, "lang" : "de-DE", "notes" : [ { "category" : "legal_disclaimer", "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen." }, { "category" : "description", "text" : "Net-SNMP ist eine Software-Suite zur Verwendung und Anwendung des SNMP (simple network management protocol) Protokolls. Sie unterstützt IPv4, IPv6, IPX, AAL5, Unix domain sockets und andere Transportprotokolle. In der Suite sind eine Client-Bibliothek, eine Sammlung von Kommandozeilen-Tools, ein SNMP Agent sowie Perl- und Python-Module enthalten.", "title" : "Produktbeschreibung" }, { "category" : "summary", "text" : "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Net-SNMP ausnutzen, um einen Denial of Service Angriff durchzuführen.", "title" : "Angriff" }, { "category" : "general", "text" : "- F5 Networks\n- Juniper Appliance\n- Linux\n- UNIX", "title" : "Betroffene Betriebssysteme" } ], "publisher" : { "category" : "other", "contact_details" : "csaf-provider@cert-bund.de", "name" : "Bundesamt für Sicherheit in der Informationstechnik", "namespace" : "https://www.bsi.bund.de" }, "references" : [ { "category" : "self", "summary" : "WID-SEC-W-2025-1695 - CSAF Version", "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2014/wid-sec-w-2025-1695.json" }, { "category" : "self", "summary" : "WID-SEC-2025-1695 - Portal Version", "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1695" }, { "category" : "external", "summary" : "Mailingliste OSS-Security vom 2014-09-01", "url" : "http://www.openwall.com/lists/oss-security/2014/09/01/1" }, { "category" : "external", "summary" : "SUSE Security update for net-snmp (9679) vom 2014-09-09", "url" : "https://download.suse.com/patch/finder/?keywords=a3129963b7293565b8abdd32cd25c3f4" }, { "category" : "external", "summary" : "Oracle Third Party Vulnerability Resolution Blog Eintrag vom 2014-12-16", "url" : "https://blogs.oracle.com/sunsecurity/entry/cve_2014_3565_resource_management" }, { "category" : "external", "summary" : "Mandriva Security Advisory MDVSA-2015:092 vom 2015-03-28", "url" : "http://www.mandriva.com/de/support/security/advisories/advisory/MDVSA-2015%3A092/" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2015:1385-01 vom 2015-07-22", "url" : "https://rhn.redhat.com/errata/RHSA-2015-1385.html" }, { "category" : "external", "summary" : "Ubuntu Security Notice USN-2711-1 vom 2015-08-17", "url" : "http://www.ubuntu.com/usn/usn-2711-1/" }, { "category" : "external", "summary" : "F5 Security Advisory SOL17315 vom 2015-09-28", "url" : "https://support.f5.com/kb/en-us/solutions/public/17000/300/sol17315.html" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2015:2345 vom 2015-11-19", "url" : "https://rhn.redhat.com/errata/RHSA-2015-2345.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2014:1106-1 vom 2016-01-22", "url" : "https://www.suse.com/support/update/announcement/2014/suse-su-20141106-1.html" }, { "category" : "external", "summary" : "Juniper Security Advisory JSA10991 vom 2020-01-08", "url" : "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10991&actp=RSS" }, { "category" : "external", "summary" : "Dell Security Advisory DSA-2025-221 vom 2025-08-01", "url" : "https://www.dell.com/support/kbdoc/000337925" } ], "source_lang" : "en-US", "title" : "Net-SNMP: Schwachstelle ermöglicht Denial of Service", "tracking" : { "current_release_date" : "2025-07-31T22:00:00.000+00:00", "generator" : { "date" : "2025-08-01T07:29:34.667+00:00", "engine" : { "name" : "BSI-WID", "version" : "1.4.0" } }, "id" : "WID-SEC-W-2025-1695", "initial_release_date" : "2014-08-31T22:00:00.000+00:00", "revision_history" : [ { "date" : "2014-08-31T22:00:00.000+00:00", "number" : "1", "summary" : "Initial Release" }, { "date" : "2014-08-31T22:00:00.000+00:00", "number" : "2", "summary" : "Version nicht vorhanden" }, { "date" : "2014-09-09T22:00:00.000+00:00", "number" : "3", "summary" : "New remediations available" }, { "date" : "2014-09-09T22:00:00.000+00:00", "number" : "4", "summary" : "Version nicht vorhanden" }, { "date" : "2014-12-17T23:00:00.000+00:00", "number" : "5", "summary" : "New remediations available" }, { "date" : "2014-12-17T23:00:00.000+00:00", "number" : "6", "summary" : "Version nicht vorhanden" }, { "date" : "2015-03-29T22:00:00.000+00:00", "number" : "7", "summary" : "New remediations available" }, { "date" : "2015-07-22T22:00:00.000+00:00", "number" : "8", "summary" : "New remediations available" }, { "date" : "2015-07-22T22:00:00.000+00:00", "number" : "9", "summary" : "Version nicht vorhanden" }, { "date" : "2015-08-17T22:00:00.000+00:00", "number" : "10", "summary" : "New remediations available" }, { "date" : "2015-08-17T22:00:00.000+00:00", "number" : "11", "summary" : "Version nicht vorhanden" }, { "date" : "2015-09-28T22:00:00.000+00:00", "number" : "12", "summary" : "New remediations available" }, { "date" : "2015-09-28T22:00:00.000+00:00", "number" : "13", "summary" : "Version nicht vorhanden" }, { "date" : "2015-11-19T23:00:00.000+00:00", "number" : "14", "summary" : "New remediations available" }, { "date" : "2015-11-19T23:00:00.000+00:00", "number" : "15", "summary" : "Version nicht vorhanden" }, { "date" : "2016-01-24T23:00:00.000+00:00", "number" : "16", "summary" : "New remediations available" }, { "date" : "2016-01-24T23:00:00.000+00:00", "number" : "17", "summary" : "Version nicht vorhanden" }, { "date" : "2020-01-08T23:00:00.000+00:00", "number" : "18", "summary" : "Neue Updates von Juniper aufgenommen" }, { "date" : "2025-07-31T22:00:00.000+00:00", "number" : "19", "summary" : "Neue Updates von Dell aufgenommen" } ], "status" : "final", "version" : "19" } }, "product_tree" : { "branches" : [ { "branches" : [ { "branches" : [ { "category" : "product_version_range", "name" : "<19.12.0.1", "product" : { "name" : "Dell NetWorker <19.12.0.1", "product_id" : "T042999" } }, { "category" : "product_version", "name" : "19.12.0.1", "product" : { "name" : "Dell NetWorker 19.12.0.1", "product_id" : "T042999-fixed", "product_identification_helper" : { "cpe" : "cpe:/a:dell:networker:19.12.0.1" } } }, { "category" : "product_version_range", "name" : "<19.11.0.6", "product" : { "name" : "Dell NetWorker <19.11.0.6", "product_id" : "T045791" } }, { "category" : "product_version", "name" : "19.11.0.6", "product" : { "name" : "Dell NetWorker 19.11.0.6", "product_id" : "T045791-fixed", "product_identification_helper" : { "cpe" : "cpe:/a:dell:networker:19.11.0.6" } } } ], "category" : "product_name", "name" : "NetWorker" } ], "category" : "vendor", "name" : "Dell" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 BIG-IP Access Policy Manager 10.1.0-10.2.4", "product_id" : "199182", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_access_policy_manager:10.2.4" } } }, { "category" : "product_version", "name" : "11.0.0-11.6.0", "product" : { "name" : "F5 BIG-IP Access Policy Manager 11.0.0-11.6.0", "product_id" : "307369", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_access_policy_manager:11.6.0" } } }, { "category" : "product_version", "name" : "12", "product" : { "name" : "F5 BIG-IP Access Policy Manager 12.00", "product_id" : "T005931", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_access_policy_manager:12.0.0" } } } ], "category" : "product_name", "name" : "BIG-IP Access Policy Manager" }, { "branches" : [ { "category" : "product_version", "name" : "11.0.0-11.6.0", "product" : { "name" : "F5 BIG-IP Analytics 11.0.0-11.6.0", "product_id" : "T003683", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_analytics:11.6.0" } } }, { "category" : "product_version", "name" : "12", "product" : { "name" : "F5 BIG-IP Analytics 12.00", "product_id" : "T005928", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_analytics:12.0.0" } } } ], "category" : "product_name", "name" : "BIG-IP Analytics" }, { "branches" : [ { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 BIG-IP Application Security Manager 10.1.0-10.2.4", "product_id" : "T000548", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_application_security_manager:10.2.4" } } }, { "category" : "product_version", "name" : "11.0.0-11.6.0", "product" : { "name" : "F5 BIG-IP Application Security Manager 11.0.0-11.6.0", "product_id" : "T003684", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_application_security_manager:11.6.0" } } }, { "category" : "product_version", "name" : "12", "product" : { "name" : "F5 BIG-IP Application Security Manager 12.00", "product_id" : "T005932", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_application_security_manager:12.0.0" } } } ], "category" : "product_name", "name" : "BIG-IP Application Security Manager" }, { "branches" : [ { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 BIG-IP Global Traffic Manager 10.1.0-10.2.4", "product_id" : "T000523", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_global_traffic_manager:10.2.4" } } }, { "category" : "product_version", "name" : "11.0.0-11.6.0", "product" : { "name" : "F5 BIG-IP Global Traffic Manager 11.0.0-11.6.0", "product_id" : "T003686", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_global_traffic_manager:11.6.0" } } } ], "category" : "product_name", "name" : "BIG-IP Global Traffic Manager" }, { "branches" : [ { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 BIG-IP Link Controller 10.1.0-10.2.4", "product_id" : "T000540", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_link_controller:10.2.4" } } }, { "category" : "product_version", "name" : "11.0.0-11.6.0", "product" : { "name" : "F5 BIG-IP Link Controller 11.0.0-11.6.0", "product_id" : "T003687", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_link_controller:11.6.0" } } }, { "category" : "product_version", "name" : "12", "product" : { "name" : "F5 BIG-IP Link Controller 12.00", "product_id" : "T005938", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_link_controller:12.0.0" } } } ], "category" : "product_name", "name" : "BIG-IP Link Controller" }, { "branches" : [ { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 BIG-IP Local Traffic Manager 10.1.0-10.2.4", "product_id" : "T000512", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_local_traffic_manager:10.2.4" } } }, { "category" : "product_version", "name" : "11.0.0-11.6.0", "product" : { "name" : "F5 BIG-IP Local Traffic Manager 11.0.0-11.6.0", "product_id" : "T003681", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_local_traffic_manager:11.6.0" } } }, { "category" : "product_version", "name" : "12", "product" : { "name" : "F5 BIG-IP Local Traffic Manager 12.00", "product_id" : "T005927", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_local_traffic_manager:12.0.0" } } } ], "category" : "product_name", "name" : "BIG-IP Local Traffic Manager" }, { "branches" : [ { "category" : "product_version", "name" : "11.0.0-11.4.1", "product" : { "name" : "F5 BIG-IP Protocol Security Manager 11.0.0-11.4.1", "product_id" : "T003110", "product_identification_helper" : { "cpe" : "cpe:/a:f5:protocol_security_manager:11.4.1" } } }, { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 BIG-IP Protocol Security Manager 10.1.0-10.2.4", "product_id" : "T003111", "product_identification_helper" : { "cpe" : "cpe:/a:f5:protocol_security_manager:10.2.4" } } } ], "category" : "product_name", "name" : "BIG-IP Protocol Security Manager" }, { "branches" : [ { "category" : "product_version", "name" : "3.0.0-3.1.1", "product" : { "name" : "F5 Enterprise Manager 3.0.0-3.1.1", "product_id" : "269870", "product_identification_helper" : { "cpe" : "cpe:/a:f5:enterprise_manager:3.1.1" } } } ], "category" : "product_name", "name" : "Enterprise Manager" }, { "branches" : [ { "category" : "product_version", "name" : "11.0.0-11.3.0", "product" : { "name" : "F5 WAN Optimization Manager 11.0.0-11.3.0", "product_id" : "269868", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_wan_optimization_manager:11.3.0" } } }, { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 WAN Optimization Manager 10.1.0-10.2.4", "product_id" : "T000535", "product_identification_helper" : { "cpe" : "cpe:/a:f5:big-ip_wan_optimization_manager:10.2.4" } } } ], "category" : "product_name", "name" : "WAN Optimization Manager" }, { "branches" : [ { "category" : "product_version", "name" : "10.1.0-10.2.4", "product" : { "name" : "F5 WebAccelerator 10.1.0-10.2.4", "product_id" : "T001411", "product_identification_helper" : { "cpe" : "cpe:/h:f5:big-ip_webaccelerator:10.2.4" } } }, { "category" : "product_version", "name" : "11.0.0-11.3.0", "product" : { "name" : "F5 WebAccelerator 11.0.0-11.3.0", "product_id" : "T001412", "product_identification_helper" : { "cpe" : "cpe:/h:f5:big-ip_webaccelerator:11.3.0" } } } ], "category" : "product_name", "name" : "WebAccelerator" } ], "category" : "vendor", "name" : "F5" }, { "branches" : [ { "category" : "product_name", "name" : "Juniper JUNOS", "product" : { "name" : "Juniper JUNOS", "product_id" : "5930", "product_identification_helper" : { "cpe" : "cpe:/o:juniper:junos:-" } } } ], "category" : "vendor", "name" : "Juniper" }, { "branches" : [ { "category" : "product_name", "name" : "Open Source Net-SNMP", "product" : { "name" : "Open Source Net-SNMP", "product_id" : "T002685", "product_identification_helper" : { "cpe" : "cpe:/a:net-snmp:net-snmp:-" } } } ], "category" : "vendor", "name" : "Open Source" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "11.2", "product" : { "name" : "Oracle Berkeley DB 11.2", "product_id" : "T002989", "product_identification_helper" : { "cpe" : "cpe:/a:oracle:solaris:11.2" } } } ], "category" : "product_name", "name" : "Solaris" } ], "category" : "vendor", "name" : "Oracle" }, { "branches" : [ { "category" : "product_name", "name" : "Red Hat Enterprise Linux", "product" : { "name" : "Red Hat Enterprise Linux", "product_id" : "67646", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:-" } } } ], "category" : "vendor", "name" : "Red Hat" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "11 SP3", "product" : { "name" : "SUSE Linux Enterprise Desktop 11 SP3", "product_id" : "T002224", "product_identification_helper" : { "cpe" : "cpe:/o:suse:linux_enterprise_desktop:11:sp3" } } } ], "category" : "product_name", "name" : "Linux Enterprise Desktop" }, { "branches" : [ { "category" : "product_version", "name" : "11 SP3", "product" : { "name" : "SUSE Linux Enterprise Server 11 SP3", "product_id" : "T002223", "product_identification_helper" : { "cpe" : "cpe:/o:suse:linux_enterprise_server:11:sp3" } } }, { "category" : "product_version", "name" : "11 SP3 for VMware", "product" : { "name" : "SUSE Linux Enterprise Server 11 SP3 for VMware", "product_id" : "T003321", "product_identification_helper" : { "cpe" : "cpe:/o:suse:linux_enterprise_server:11_sp3_for_vmware" } } } ], "category" : "product_name", "name" : "Linux Enterprise Server" } ], "category" : "vendor", "name" : "SUSE" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "12.04 LTS", "product" : { "name" : "Ubuntu Linux 12.04 LTS", "product_id" : "170497", "product_identification_helper" : { "cpe" : "cpe:/o:canonical:ubuntu_linux:12.04:-:lts" } } }, { "category" : "product_version", "name" : "15.04", "product" : { "name" : "Ubuntu Linux 15.04", "product_id" : "310566", "product_identification_helper" : { "cpe" : "cpe:/o:canonical:ubuntu_linux:15.04" } } }, { "category" : "product_version", "name" : "14.04 LTS", "product" : { "name" : "Ubuntu Linux 14.04 LTS", "product_id" : "T003005", "product_identification_helper" : { "cpe" : "cpe:/o:canonical:ubuntu_linux:14.04:-:lts" } } } ], "category" : "product_name", "name" : "Linux" } ], "category" : "vendor", "name" : "Ubuntu" } ] }, "vulnerabilities" : [ { "cve" : "CVE-2014-3565", "product_status" : { "known_affected" : [ "T003681", "T003683", "T003321", "T003684", "269868", "67646", "T003686", "T003005", "T003687", "T005927", "T005928", "T000535", "T000512", "T042999", "5930", "269870", "199182", "T003110", "T003111", "T002685", "T005932", "T005931", "T002989", "T005938", "T000548", "170497", "310566", "T000523", "T001412", "T001411", "T002224", "307369", "T000540", "T002223", "T045791" ] }, "release_date" : "2014-08-31T22:00:00.000+00:00", "title" : "CVE-2014-3565" } ] }