CVE-2018-18066 : snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

Published 2018-10-08 18:29:01

Updated 2025-05-06 15:15:55

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2018-18066

Net-snmp » Net-snmp
Versions before (<) 5.8
cpe:2.3:a:net-snmp:net-snmp:*:*:*:*:*:*:*:*
Matching versions
Netapp » Data Ontap » Version: N/A
cpe:2.3:o:netapp:data_ontap:-:*:*:*:*:*:*:*
Matching versions
Netapp » Storagegrid Webscale » Version: N/A
cpe:2.3:a:netapp:storagegrid_webscale:-:*:*:*:*:*:*:*
Matching versions
Netapp » Cloud Backup » Version: N/A
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
Matching versions
Netapp » Hyper Converged Infrastructure » Version: N/A
cpe:2.3:a:netapp:hyper_converged_infrastructure:-:*:*:*:*:*:*:*
Matching versions
Netapp » Solidfire Element Os » Version: N/A
cpe:2.3:o:netapp:solidfire_element_os:-:*:*:*:*:*:*:*
Matching versions
Netapp » E-series Santricity Os Controller
Versions from including (>=) 11.0 and up to, including, (<=) 11.5
cpe:2.3:o:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-18066

EPSS FAQ

0.83%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 72 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-18066

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-05-06
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2018-18066

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.
Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)

References for CVE-2018-18066

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Page not found | Oracle

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20181107-0001/

October 2018 Net-SNMP Vulnerabilities in NetApp Products | NetApp Product Security
Third Party Advisory

CVEs referencing this url
https://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/

net-snmp / Code / Commit [f23bcd]
Patch;Third Party Advisory
https://dumpco.re/blog/net-snmp-5.7.3-remote-dos

dumpco.re
Exploit;Patch;Third Party Advisory

CVEs referencing this url
https://sourceforge.net/p/net-snmp/code/ci/7ffb8e25a0db851953155de91f0170e9bf8c457d/

net-snmp / Code / Commit [7ffb8e]
Patch;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-18066

Products affected by CVE-2018-18066

Exploit prediction scoring system (EPSS) score for CVE-2018-18066

CVSS scores for CVE-2018-18066

CWE ids for CVE-2018-18066

References for CVE-2018-18066