Shodan
Vulnerabilities
Vulnerable Software
Broadcom:  >> Tcpreplay  Security Vulnerabilities
CVE-2023-4256
Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the tcpedit_dlt_cleanup() function within plugins/dlt_plugins.c. This vulnerability can be exploited by supplying a specifically crafted file to the tcprewrite binary. This flaw enables a local attacker to initiate a Denial of Service (DoS) attack.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-12-21
CVE-2023-27788
An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the ports2PORT function at the portmap.c:69 endpoint.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-03-16
CVE-2023-27789
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178 endpoint.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-03-16
CVE-2023-27783
An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpedit_dlt_cleanup function at plugins/dlt_plugins.c.
CVSS Score
7.5
EPSS Score
0.006
Published
2023-03-16
CVE-2023-27784
An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the read_hexstring function at the utils.c:309 endpoint.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-03-16
CVE-2023-27785
An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse endpoints function.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-03-16
CVE-2023-27786
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the macinstring function.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-03-16
CVE-2023-27787
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81 endpoint.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-03-16
CVE-2022-37047
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-18
CVE-2022-37048
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved