CVE-2015-8100
EPSS 0.14%
Description
The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file.
How to fix CVE-2015-8100
To remediate CVE-2015-8100, upgrade the affected package to a fixed version below.
- Alpine/net-snmp—upgrade to 5.9.3-r1 or later
Is CVE-2015-8100 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 5.9.3-r1