Net-SNMP snmptrapd crash_CVE-2025-68615

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2.

AI Analysis

Buffer overflow in snmptrapd daemon due to specially crafted packet

Basic Information

ID CVE-2025-68615

Source GitHub_M

Published Dec 22, 2025 at 23:55

Affected Product

Vendor net-snmp

Product net-snmp

Version < 5.9.5

Affected Versions net-snmp net-snmp < 5.9.5
net-snmp net-snmp >= 5.10.pre1, < 5.10.pre2

CWE Classification

CWE-119

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Net-SNMP

Product net-snmp

Version < 5.9.5, >= 5.10.pre1, < 5.10.pre2

References

github.com /net-snmp/net-snmp/security/advisories/GHSA-4389-rwqf-q9gq

{
    "lastseen": "",
    "description": "net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2.",
    "published": "2025-12-22T23:55:30.138Z",
    "modified": "2025-12-22T23:55:30.138Z",
    "type": "cve",
    "title": "Net-SNMP snmptrapd crash",
    "source": "GitHub_M",
    "references": "https://github.com/net-snmp/net-snmp/security/advisories/GHSA-4389-rwqf-q9gq",
    "id": "CVE-2025-68615",
    "bulletinFamily": "",
    "cwe": [
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "net-snmp net-snmp < 5.9.5\nnet-snmp net-snmp >= 5.10.pre1, < 5.10.pre2",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "net-snmp",
    "version": "< 5.9.5",
    "vendor": "net-snmp",
    "ai_description": "Buffer overflow in snmptrapd daemon due to specially crafted packet",
    "ai_severity": "Critical",
    "ai_vendor": "Net-SNMP",
    "ai_product": "net-snmp",
    "ai_version": "< 5.9.5, >= 5.10.pre1, < 5.10.pre2",
    "ai_score": 9.8
}