In combination with the *snmp-mibs-downloader package* this protection can be bypassed and it is possible for this account to elevate permissions to the root user. Upstream Issue: https://github.com/net-snmp/net-snmp/issues/145 Upstream Commit: https://github.com/net-snmp/net-snmp/commit/4fd9a450444a434a993bc72f7c3486ccce41f602
Created net-snmp tracking bugs for this issue: Affects: fedora-all [bug 1862470]
Statement: This flaw does not affect net-snmp as shipped with Red Hat Enterprise Linux 5, 6, 7, or 8. There is no snmp-mibs-downloader package in the repositories and, the net-snmp install process does NOT create a separate low-privilege user account to run snmpd nor does it define in /usr/lib/systemd/system/snmpd.service an ExecStart with a -u or -g option for any other users or groups by default. As there is no low-privileged user created to escalate to root, it's notaffected.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-15861