Candidate: CVE-2020-24361
PublicDate: 2020-08-16 04:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24361
 http://www.snmptt.org/changelog.shtml
Description:
 SNMPTT before 1.4.2 allows attackers to execute shell code via EXEC,
 PREXEC, or unknown_trap_exec.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_snmptt:
upstream_snmptt: needs-triage
precise/esm_snmptt: DNE
trusty_snmptt: ignored (out of standard support)
trusty/esm_snmptt: DNE
xenial_snmptt: ignored (end of standard support, was needed)
bionic_snmptt: needed
focal_snmptt: needed
groovy_snmptt: not-affected (1.4.2-1)
hirsute_snmptt: not-affected (1.4.2-1)
impish_snmptt: not-affected (1.4.2-1)
jammy_snmptt: not-affected (1.4.2-1)
devel_snmptt: not-affected (1.4.2-1)