CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 2CVE-2024-3024 – appneta tcpreplay get.c get_layer4_v6 heap-based overflow
https://notcve.org/view.php?id=CVE-2024-3024
28 Mar 2024 — A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. This affects the function get_layer4_v6 of the file /tcpreplay/src/common/get.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. • https://docs.google.com/document/d/1wCIrViAJwGsO5afPBLLjRhO5RClsoUo3J9q1psLs84s/edit?usp=sharing • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-37047 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-37047
18 Aug 2022 — The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940. Se ha detectado que el componente tcprewrite de Tcpreplay versión v4.4.1, contiene un desbordamiento del búfer en la región heap de la memoria en la función get_ipv6_next en el archivo common/get.c:713. NOTA: esto es diferente de CVE-2022-27940. Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which coul... • https://github.com/appneta/tcpreplay/issues/734 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-37048 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-37048
18 Aug 2022 — The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941. Se ha detectado que el componente tcprewrite de Tcpreplay versión v4.4.1, contiene un desbordamiento de búfer en la región heap de la memoria en la función get_l2len_protocolo en el archivo common/get.c:344. NOTA: esto es diferente de CVE-2022-27941. Multiple vulnerabilities have been discovered in Tcpreplay, the worst of ... • https://github.com/appneta/tcpreplay/issues/735 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-37049 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-37049
18 Aug 2022 — The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942. Se ha detectado que el componente tcpprep de Tcpreplay versión v4.4.1, contiene un desbordamiento de búfer en la región heap de la memoria en la función parse_mpls en el archivo common/get.c:150. NOTA: esto es diferente de CVE-2022-27942. Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in d... • https://github.com/appneta/tcpreplay/issues/736 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-28487 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-28487
04 May 2022 — Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest threat from this vulnerability is to data confidentiality. Tcpreplay versión 4.4.1, contiene un fallo de pérdida de memoria en la función fix_ipv6_checksums(). La mayor amenaza de esta vulnerabilidad es para la confidencialidad de los datos Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in denial of service. Versions less than 4.4.2 are affected. • https://github.com/appneta/tcpreplay/issues/723 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-27416 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-27416
12 Apr 2022 — Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free. Se ha detectado que Tcpreplay versión v4.4.1, contiene una doble liberación por medio de __interceptor_free Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in denial of service. Versions less than 4.4.2 are affected. • https://github.com/appneta/tcpreplay/issues/702 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-27418 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-27418
12 Apr 2022 — Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c. Tcpreplay versión v4.4.1, presenta un desbordamiento de búfer en la región heap de la memoria en la función do_checksum_math en el archivo /tcpedit/checksum.c Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in denial of service. Versions less than 4.4.2 are affected. • https://github.com/appneta/tcpreplay/issues/703 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27939 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-27939
26 Mar 2022 — tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. tcprewrite en Tcpreplay versión 4.4.1, presenta una aserción alcanzable en la función get_layer4_v6 en el archivo common/get.c Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in denial of service. Versions less than 4.4.2 are affected. • https://github.com/appneta/tcpreplay/issues/717 • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27940 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-27940
26 Mar 2022 — tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c. tcprewrite en Tcpreplay versión 4.4.1, presenta una lectura excesiva de búfer en la región heap de la memoria en la función get_ipv6_next en el archivo common/get.c Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in denial of service. Versions less than 4.4.2 are affected. • https://github.com/appneta/tcpreplay/issues/718 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27941 – Gentoo Linux Security Advisory 202210-08
https://notcve.org/view.php?id=CVE-2022-27941
26 Mar 2022 — tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c. tcprewrite en Tcpreplay versión 4.4.1 presenta una lectura excesiva de búfer en la región heap de la memoria en la función get_l2len_protocol en el archivo common/get.c Multiple vulnerabilities have been discovered in Tcpreplay, the worst of which could result in denial of service. Versions less than 4.4.2 are affected. • https://github.com/appneta/tcpreplay/issues/716 • CWE-125: Out-of-bounds Read •