rpcapd/daemon.c in libpcap before 1.9.1 allows attackers to cause a denial of service (NULL pointer dereference and daemon crash) if a crypt() call...
7.5CVSS
7.1AI Score
0.024EPSS
rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector involving extra data at the end of a...
5.3CVSS
6AI Score
0.016EPSS
rpcapd/daemon.c in libpcap before 1.9.1 on non-Windows platforms provides details about why authentication failed, which might make it easier for attackers to enumerate valid...
5.3CVSS
6.2AI Score
0.016EPSS
rpcapd/daemon.c in libpcap before 1.9.1 allows SSRF because a URL may be provided as a capture...
5.3CVSS
6AI Score
0.016EPSS
sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating...
5.3CVSS
6.2AI Score
0.005EPSS
pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might allow remote attackers to send arbitrary data while avoiding detection via crafted...
9.8CVSS
9.4AI Score
0.007EPSS