Broadcom Tcpreplay 4.4.3

CPE Details

Broadcom Tcpreplay 4.4.3
broadcom
tcpreplay
4.4.3
2023-09-28
10h54 +00:00
2023-09-28
10h54 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:broadcom:tcpreplay:4.4.3:*:*:*:*:*:*:*

Informations

Vendor

broadcom

Product

tcpreplay

Version

4.4.3

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-3024 2024-03-28 02h00 +00:00 A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. This affects the function get_layer4_v6 of the file /tcpreplay/src/common/get.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-258333 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
7.8
Haute
CVE-2023-4256 2023-12-21 16h03 +00:00 Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the tcpedit_dlt_cleanup() function within plugins/dlt_plugins.c. This vulnerability can be exploited by supplying a specifically crafted file to the tcprewrite binary. This flaw enables a local attacker to initiate a Denial of Service (DoS) attack.
5.5
Moyen
CVE-2023-27783 2023-03-16 00h00 +00:00 An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpedit_dlt_cleanup function at plugins/dlt_plugins.c.
7.5
Haute
CVE-2023-27784 2023-03-16 00h00 +00:00 An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the read_hexstring function at the utils.c:309 endpoint.
7.5
Haute
CVE-2023-27785 2023-03-16 00h00 +00:00 An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse endpoints function.
7.5
Haute
CVE-2023-27786 2023-03-16 00h00 +00:00 An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the macinstring function.
7.5
Haute
CVE-2023-27787 2023-03-16 00h00 +00:00 An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81 endpoint.
7.5
Haute
CVE-2023-27788 2023-03-16 00h00 +00:00 An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the ports2PORT function at the portmap.c:69 endpoint.
7.5
Haute
CVE-2023-27789 2023-03-16 00h00 +00:00 An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178 endpoint.
7.5
Haute
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.