CVE-2018-18408

2018-10-1704:29:00

Google

osv.dev

7.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.6%

JSON

A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The issue gets triggered in the function post_args() at tcpbridge.c, causing a denial of service or possibly unspecified other impact.

CPENameOperatorVersion
tcpreplayeq4.0.4
tcpreplayeq4.1.0beta2
tcpreplayeq4.2.5
tcpreplayeq4.1.0
tcpreplayeq4.0.0
tcpreplayeq4.2.3
tcpreplayeq4.3.0-beta1
tcpreplayeq4.1.1-beta2
tcpreplayeq4.2.0-beta1
tcpreplayeq4.0.1

Name	Operator	Version
tcpreplay	eq	4.0.4
tcpreplay	eq	4.1.0beta2
tcpreplay	eq	4.2.5
tcpreplay	eq	4.1.0
tcpreplay	eq	4.0.0
tcpreplay	eq	4.2.3
tcpreplay	eq	4.3.0-beta1
tcpreplay	eq	4.1.1-beta2
tcpreplay	eq	4.2.0-beta1
tcpreplay	eq	4.0.1