Published on December 27, 2025
Critical Net-SNMP Flaw CVE-2025-68615 Allows Remote Buffer Overflow To Crash Services
Severity : Critical
Detail
A newly identified vulnerability in the Net-SNMP suite, tracked as CVE-2025-68615, poses significant risks to organizations that depend on SNMP for network monitoring and management.
CVE-2025-68615 carries a CVSS score of 9.8, placing it in the Critical category. The metrics highlight a High impact on confidentiality, integrity, and availability. In security evaluations, buffer overflows with such ratings typically suggest exploitation may extend beyond simple service disruption.
Impact: The flaw impacts the snmptrapd daemon, which processes SNMP trap messages, and could allow remote attackers to crash services or gain deeper system control. Given Net-SNMP’s widespread use across enterprises and service providers, the implications of this issue are broad and potentially severe.
“A specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash.”
Patch Availability and Recommended Mitigations
The vulnerability was identified by buddurid in collaboration with the Trend Micro Zero Day Initiative. According to the advisory, all Net-SNMP versions are impacted, with fixes provided in 5.9.5 and 5.10.pre2.
Administrators running the snmptrapd daemon are strongly advised to upgrade without delay. The advisory explicitly states: “Users of Net-SNMP’s snmptrapd should upgrade immediately to Net-SNMP 5.9.5 or 5.10.pre2.”
For organizations unable to patch right away, only limited mitigations exist.
Recommended measures include network segmentation, ensuring SNMP ports are never exposed to the public internet, and applying firewall rules to block external access to the snmptrapd port.
The advisory stresses that upgrading or properly firewalling the service are the only effective defenses.
Source
https://github.com/net-snmp/net-snmp/security/advisories/GHSA-4389-rwqf-q9gq