CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

Mageia•added 2026/05/07 5:6 a.m.•16 views

Updated tcpflow packages fix security vulnerability

tcpflow has TIM Element OOB Write in wifipcap. CVE-2026-25061...

7.5CVSS5.8AI score0.00085EPSS

Exploits1References2

OSV•added 2026/05/07 5:6 a.m.•2 views

MGASA-2026-0113 Updated tcpflow packages fix security vulnerability

tcpflow has TIM Element OOB Write in wifipcap. CVE-2026-25061...

7.5CVSS5.8AI score0.00085EPSS

Exploits1References3

UbuntuCve•added 2026/01/29 10:15 p.m.•2 views

CVE-2026-25061

tcpflow is a TCP/IP packet demultiplexer. In versions up to and including 1.61, wifipcap parses 802.11 management frame elements and performs a length check on the wrong field when handling the TIM element. A crafted frame with a large TIM length can cause a 1-byte out-of-bounds write past...

7.5CVSS5.9AI score0.00085EPSS

Exploits1References2

EUVD•added 2026/01/29 9:42 p.m.•3 views

EUVD-2026-4944

6.9CVSS6.3AI score0.00085EPSS

Exploits1References1

Debian CVE•added 2026/01/29 9:42 p.m.•4 views

CVE-2026-25061

7.5CVSS6AI score0.00085EPSS

Exploits1

AlpineLinux•added 2026/01/29 9:42 p.m.•1 views

CVE-2026-25061

7.5CVSS6.2AI score0.00085EPSS

Exploits1References2

Vulnrichment•added 2026/01/29 9:42 p.m.•1 views

CVE-2026-25061 tcpflow has TIM Element OOB Write in wifipcap

6.9CVSS6AI score0.00085EPSS

Exploits1References1

OSV•added 2026/01/29 9:42 p.m.•1 views

CVE-2026-25061 tcpflow has TIM Element OOB Write in wifipcap

6.9CVSS6.3AI score0.00085EPSS

Exploits1References4

CVE•added 2026/01/29 9:42 p.m.•11 views

CVE-2026-25061

tcpflow (versions up to 1.61) contains a vulnerability in wifipcap where 802.11 TIM element length is checked against the wrong field. A crafted frame with a large TIM length can trigger a 1-byte out-of-bounds write at tim.bitmap[251], on a stack-allocated TIM handling path in handle_beacon() and...

7.5CVSS6.3AI score0.00085EPSS

Exploits1References2Affected Software1

CNNVD•added 2026/01/29 12:0 a.m.•1 views

TCPFLOW buffer error vulnerability

TCPFLOW is a TCP/IP packet demuxer developed by Simson L. Garfinkel. Versions of TCPFLOW 1.61 and earlier contained a buffer error vulnerability. This vulnerability stemmed from the use of wifipcap to perform length checks on error fields when processing TIM elements, which could lead to...

7.5CVSS6AI score0.00085EPSS

Exploits1References2

SUSE CVE•added 2023/02/15 4:25 a.m.•1 views

SUSE CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS9.1AI score0.0052EPSS

Exploits1References3

Mageia•added 2018/10/19 6:0 p.m.•29 views

Updated tcpflow packages fix security vulnerability

pdated tcpflow package fixes security vulnerability: An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the functio...

9.1CVSS3.7AI score0.0052EPSS

Exploits1References2

CNVD•added 2018/08/06 12:0 a.m.•1 views

tcpflow integer overflow vulnerability

TCPFLOW is a network monitoring tool that records TCP sessions. An integer overflow vulnerability exists in the wifipcap/wifipcap.cpp file in TCPFLOW 1.5.0-alpha and prior versions. An attacker can exploit this vulnerability to cause an out-of-bounds read and possibly access sensitive memory or...

9.1CVSS9AI score0.0052EPSS

Exploits1References1

OSV•added 2018/08/05 3:29 a.m.•1 views

DEBIAN-CVE-2018-14938

9.1CVSS8.9AI score0.0052EPSS

Exploits1References1

OSV•added 2018/08/05 3:29 a.m.•17 views

CVE-2018-14938

9.1CVSS6.9AI score

Exploits0References4

Debian CVE•added 2018/08/05 3:0 a.m.•25 views

CVE-2018-14938