CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-8377

An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.7%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2019-8377

Broadcom » Tcpreplay » Version: 4.3.1

cpe:2.3:a:broadcom:tcpreplay:4.3.1
Fedoraproject » Fedora » Version: 28

cpe:2.3:o:fedoraproject:fedora:28
Fedoraproject » Fedora » Version: 29

cpe:2.3:o:fedoraproject:fedora:29
Fedoraproject » Fedora » Version: 30

cpe:2.3:o:fedoraproject:fedora:30
Fedoraproject » Fedora » Version: 31

cpe:2.3:o:fedoraproject:fedora:31
Fedoraproject » Fedora » Version: 32

cpe:2.3:o:fedoraproject:fedora:32

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-8377

Products

Pricing

Contact Us