@iwm911 discovered that an SNMP service was publicly exposed on several non-production servers and was configured with the default community string. This allowed read-access to non-sensitive information about the servers. We addressed this vulnerability by decomissioning one server and modifying networks ACLs for another.