Broadcom: >> Tcpreplay Security Vulnerabilities
The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-18
Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest threat from this vulnerability is to data confidentiality.
CVSS Score
7.5
EPSS Score
0.005
Published
2022-05-04
Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-04-12
Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-04-12
tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2022-03-26
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-03-26
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-03-26
tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-03-26
tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-03-22
tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.c
CVSS Score
5.5
EPSS Score
0.001
Published
2022-02-11