Broadcom Tcpreplay 4.4.1

CPE Details

Broadcom Tcpreplay 4.4.1
broadcom
tcpreplay
4.4.1
2022-03-26
00h47 +00:00
2022-04-02
01h29 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:broadcom:tcpreplay:4.4.1:*:*:*:*:*:*:*

Informations

Vendor

broadcom

Product

tcpreplay

Version

4.4.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-3024 2024-03-28 02h00 +00:00 A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. This affects the function get_layer4_v6 of the file /tcpreplay/src/common/get.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-258333 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
7.8
High
CVE-2022-37047 2022-08-17 22h00 +00:00 The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940.
7.8
High
CVE-2022-37048 2022-08-17 22h00 +00:00 The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941.
7.8
High
CVE-2022-37049 2022-08-17 22h00 +00:00 The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942.
7.8
High
CVE-2022-28487 2022-05-03 22h00 +00:00 Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest threat from this vulnerability is to data confidentiality.
7.5
High
CVE-2022-27416 2022-04-11 22h00 +00:00 Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free.
7.8
High
CVE-2022-27418 2022-04-11 22h00 +00:00 Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c.
7.8
High
CVE-2022-27939 2022-03-25 23h00 +00:00 tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c.
5.5
Medium
CVE-2022-27940 2022-03-25 23h00 +00:00 tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.
7.8
High
CVE-2022-27941 2022-03-25 23h00 +00:00 tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.
7.8
High
CVE-2022-27942 2022-03-25 23h00 +00:00 tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c.
7.8
High
CVE-2022-25484 2022-03-22 15h49 +00:00 tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1.
5.5
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.