Lucene search
K
TcpdumpTcpdump

172 matches found

CVE
CVE
added 2020/11/04 5:55 p.m.384 views

CVE-2020-8037

CVE-2020-8037 affects tcpdump’s ppp decapsulator and can cause unbounded memory allocation, leading to DoS. Public documents corroborate that tcpdump 4.9.3 and later patch levels address this issue by upgrading the tcpdump package (e.g., 4.9.3-3 in some distributions; Ubuntu/Debian updates list 4...

7.5CVSS7.5AI score0.03071EPSS
CVE
CVE
added 2018/11/25 8:0 p.m.361 views

CVE-2018-19519

CVE-2018-19519 – tcpdump 4.9.2 contains a stack-based buffer over-read in the function print_prefix (print-hncp.c) triggered by specially crafted packets due to missing initialization. The issue allows reading memory beyond the buffer, potentially causing a crash or other instability. Documents c...

5.5CVSS5.7AI score0.02364EPSS
CVE
CVE
added 2019/10/03 3:12 p.m.360 views

CVE-2018-14463

CVE-2018-14463 affects tcpdump before 4.9.3 with a buffer over-read in the VRRP parser (print-vrrp.c:vrrp_print) for VRRP version 2. The connected AlmaLinux advisory confirms the vulnerability and points to upgrading tcpdump to 4.9.3 or later as a remediation; no exploitation details are provided...

7.5CVSS8.7AI score0.04719EPSS
CVE
CVE
added 2019/10/03 3:55 p.m.329 views

CVE-2018-16301

CVE-2018-16301 affects tcpdump/libpcap via a buffer overflow in tcpdump.c:read_infile. Exploitation requires a local attacker to create a 4GB file and pass it to -F, enabling potential data corruption or code execution. Remediation in affected packages commonly involves upgrading tcpdump to 4.99....

7.8CVSS7.8AI score0.00626EPSS
CVE
CVE
added 2019/10/03 3:11 p.m.328 views

CVE-2018-14462

CVE-2018-14462: TCPDUMP has a buffer over-read in the ICMP parser (print-icmp.c:icmp_print()) in versions prior to 4.9.3. A fix was released with tcpdump 4.9.3; upgrade to 4.9.3 or later to remediate. Evidence in connected docs confirms the ICMP over-read and related tcpdump fixes.

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2019/10/03 3:52 p.m.328 views

CVE-2018-16300

The vulnerability CVE-2018-16300 affects tcpdump prior to version 4.9.3, where the BGP parser (print-bgp.c:bgp_attr_print) allows stack consumption due to unlimited recursion. Exploitation would cause a stack exhaustion condition. Remediation: upgrade tcpdump to 4.9.3 or newer (as reflected in th...

7.5CVSS8.5AI score0.04122EPSS
CVE
CVE
added 2019/10/03 3:29 p.m.312 views

CVE-2018-14469

CVE-2018-14469 affects tcpdump prior to 4.9.3. Root cause: buffer over-read in the IKEv1 parser (print-isakmp.c:ikev1_n_print()). Affected: tcpdump versions before 4.9.3. Impact stated in related advisories for tcpdump family includes potential crashes or instability; exploitation details are not...

7.5CVSS8.6AI score0.05342EPSS
CVE
CVE
added 2019/10/03 3:48 p.m.310 views

CVE-2018-16229

CVE-2018-16229 (tcpdump) affects tcpdump before 4.9.3, with a buffer over-read in print-dccp.c:dccp_print_option() (DCCP parser). The issue is listed among multiple tcpdump vulnerabilities and is addressed by upgrading to tcpdump 4.9.3 or newer (as per ALMA Linux advisory noting CVE-2018-16229 am...

7.5CVSS8.6AI score0.06816EPSS
CVE
CVE
added 2019/10/03 3:15 p.m.308 views

CVE-2018-14465

CVE-2018-14465 affects tcpdump before 4.9.3. The RSVP parser’s rsvp_obj_print() performs a buffer over-read, as described in the provided sources. The vulnerability is addressed by upgrading tcpdump to version 4.9.3 or newer (and related fixes in the same release), per multiple advisories and sec...

7.5CVSS8.6AI score0.04069EPSS
CVE
CVE
added 2019/10/03 4:1 p.m.304 views

CVE-2019-15166

CVE-2019-15166 affects tcpdump: lmp_print_data_link_subobjs() in print-lmp.c before 4.9.3 lacks bounds checks, enabling memory corruption that could crash the application when processing crafted data. Connected sources confirm this specific subroutine and bug class, and multiple advisories refere...

7.5CVSS6.8AI score0.04986EPSS
CVE
CVE
added 2019/10/03 3:27 p.m.296 views

CVE-2018-14468

tcpdump before 4.9.3 contains a buffer over-read in the FRF.16 parser (print-fr.c:mfr_print()). Upgrading to tcpdump 4.9.3 (or later) is the remediation mentioned in the accompanying advisories for affected platforms.

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2019/10/03 3:57 p.m.291 views

CVE-2018-16451

CVE-2018-16451 is a buffer over-read in tcpdump's SMB parser (print-smb.c:print_trans) for SMB slots; Debian/AlmaLinux advisories show it alongside other tcpdump issues fixed by upgrading to tcpdump 4.9.3 (and libpcap 1.9.1). The available connected documents confirm the vulnerability and the fix...

9.8CVSS8.7AI score0.04134EPSS
CVE
CVE
added 2019/10/03 3:46 p.m.289 views

CVE-2018-16228

CVE-2018-16228 affects tcpdump prior to version 4.9.3. The HNCP parser (print-hncp.c:print_prefix) may read beyond the allocated buffer, exposing a buffer over-read vulnerability with potential impact on availability. The vulnerability is confirmed by multiple sources (e.g., tcpdump advisories an...

9.8CVSS8.6AI score0.03739EPSS
CVE
CVE
added 2019/10/03 3:5 p.m.281 views

CVE-2018-10103

tcpdump before 4.9.3 is affected by CVE-2018-10103 (SMB data printing mishandling). The issue is fixed in tcpdump 4.9.3 and later; remediation is to upgrade to 4.9.3 or newer. Public advisories (Debian DSA-4547-1, DLA-1955-1) confirm the fix in 4.9.3-1~deb9u1/4.9.3-1~deb10u1; AlmaLinux advisory A...

9.8CVSS8.6AI score0.04066EPSS
CVE
CVE
added 2019/10/03 3:35 p.m.281 views

CVE-2018-14880

tcpdump has a confirmed vulnerability CVE-2018-14880 in the OSPFv3 parser: a buffer over-read in ospf6_print_lshdr() inside print-ospf6.c, affecting tcpdump before version 4.9.3. Connected advisories (e.g., AlmaLinux ALSA-2020:4760, Debian DSA-4547-1, DLA-1955-1) reference this CVE and span multi...

7.5CVSS8.6AI score0.05342EPSS
CVE
CVE
added 2019/10/03 3:44 p.m.281 views

CVE-2018-16227

CVE-2018-16227 affects tcpdump up to v4.9.3. The vulnerability is a buffer over-read in the IEEE 802.11 Mesh Flags handling (print-802_11.c). Impact is memory read exposure with potential impact on affected systems; the exposed documentation notes only memory read, not code execution. Remediation...

7.5CVSS8.6AI score0.06816EPSS
CVE
CVE
added 2019/10/03 3:9 p.m.279 views

CVE-2018-14461

CVE-2018-14461 affects tcpdump up to version 4.9.3, where the LDP parser has a buffer over-read in print-ldp.c:ldp_tlv_print(). The issue is triggered while parsing LDP TLVs and can read memory beyond bounds. The vulnerability is addressed by upgrading to tcpdump 4.9.3 and libpcap 1.9.1 (per mult...

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2019/10/03 3:22 p.m.276 views

CVE-2018-14466

tcpdump (affected up to version 4.9.2) contains a buffer over-read in the Rx parser due to rx_cache_find() and rx_cache_insert() in print-rx.c, which is triggered by parsing RX data. The CVE is CVE-2018-14466. The vulnerability is fixed in tcpdump 4.9.3 (and related updates in downstream packages...

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2019/10/03 3:33 p.m.276 views

CVE-2018-14879

tcpdump (affected: before 4.9.3) has a buffer overflow in tcpdump.c:get_next_file(), tracked as CVE-2018-14879. The issue is one of multiple parsing bugs in the 4.9.x series and is documented in security advisories (e.g., AlmaLinux ALSA-2020:4760) as an out-of-bounds read/write in get_next_file()...

7CVSS8.4AI score0.04667EPSS
CVE
CVE
added 2019/10/03 3:58 p.m.276 views

CVE-2018-16452

CVE-2018-16452 affects tcpdump up to version 4.9.3, where the SMB parser smbutil.c:smb_fdata() may recurse, causing stack exhaustion. The issue is documented across multiple connected sources (AlmaLinux fix notes; Debian security advisories; Cloud Foundry USN; CNVD/Debian trackers) indicating the...

7.5CVSS8.5AI score0.04122EPSS
CVE
CVE
added 2019/10/03 3:24 p.m.273 views

CVE-2018-14467

CVE-2018-14467 affects tcpdump: the BGP parser (print-bgp.c:bgp_capabilities_print()) can over-read the buffer for BGP_CAPCODE_MP in builds before 4.9.3. Affected: tcpdump up to version 4.9.3. Impact per sources: potential crash or instability (buffer over-read). Remediation: upgrade to tcpdump 4...

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2019/10/03 3:13 p.m.272 views

CVE-2018-14464

Concretely affected: tcpdump prior to 4.9.3 (on multiple platforms as reflected in advisories). The CVE-2018-14464 issue is a buffer over-read in the LMP parser, specifically in print-lmp.c:lmp_print_data_link_subobjs(). The vulnerability arises from improper bounds checking in the LMP data handl...

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2019/10/03 3:49 p.m.272 views

CVE-2018-16230

tcpdump's CVE-2018-16230 affects the BGP parser in tcpdump prior to version 4.9.3, caused by a buffer over-read in print-bgp.c:bgp_attr_print() for MP_REACH_NLRI. Impact is described as a potential crash/denial of service with high-severity CVSS vectors in multiple advisories. The publicly known ...

9.8CVSS8.6AI score0.03891EPSS
CVE
CVE
added 2019/10/03 3:41 p.m.269 views

CVE-2018-14882

CVE-2018-14882 affects tcpdump before 4.9.3, with a buffer over-read in the ICMPv6 parser (print-icmp6.c). This can cause a crash or, in some contexts, enable arbitrary code execution as part of the suite of tcpdump issues. The linked advisory (tcpdump updates 4.9.3) and Cloud Foundry USN note th...

9.8CVSS8.6AI score0.03891EPSS
CVE
CVE
added 2019/07/22 5:30 p.m.262 views

CVE-2019-1010220

CVE-2019-1010220 affects tcpdump 4.9.2, caused by CWE-126 Buffer Over-read in print-hncp.c (print_prefix), potentially exposing Saved Frame Pointer and Return Address on the stack. Attack requires the user to open a specially crafted pcap file. Multiple vulnerability advisories (USN/SUSE/Nessus/O...

4.3CVSS6.1AI score0.01348EPSS
CVE
CVE
added 2019/10/03 3:7 p.m.256 views

CVE-2018-10105

CVE-2018-10105 affects the tcpdump utility. Affected: tcpdump before 4.9.3 with a flaw in printing SMB data, leading to potential memory impact (reported as high/critical in CVSS terms). Root cause: mishandling of SMB data during printing. Public details in connected sources (e.g., AlmaLinux ALSA...

9.8CVSS8.6AI score0.03858EPSS
CVE
CVE
added 2019/10/03 3:36 p.m.255 views

CVE-2018-14881

CVE-2018-14881 concerns the BGP parser in tcpdump prior to 4.9.3. The issue is a buffer over-read in print-bgp.c:bgp_capabilities_print() when handling BGP_CAPCODE_RESTART. Affected product: tcpdump (and related tcpdump/libpcap stack) with versions before 4.9.3. Consequences stated in sources ind...

9.8CVSS8.6AI score0.04763EPSS
CVE
CVE
added 2019/10/03 3:31 p.m.247 views

CVE-2018-14470

The CVE-2018-14470 issue affects tcpdump prior to 4.9.3, where the Babel parser in print-babel.c:babel_print_v2() triggers a buffer over-read. Public advisories and vendor bulletins (AlmaLinux, Debian, Cloud Foundry USN, IBM AIX) confirm this vulnerability as part of a collection of tcpdump issue...

7.5CVSS8.6AI score0.03985EPSS
CVE
CVE
added 2017/11/13 9:0 p.m.220 views

CVE-2017-16808

CVE-2017-16808 affects tcpdump up to version 4.9.2, where a heap-based buffer over-read can occur in aoe_print (print-aoe.c) and in lookup_emem (addrtoname.c). The result is a potential crash or memory corruption; exploitation status is not detailed in the provided documents. The connected source...

5.5CVSS7.1AI score0.03167EPSS
CVE
CVE
added 2023/04/07 8:40 p.m.210 views

CVE-2023-1801

CVE-2023-1801 concerns tcpdump’s SMB protocol decoding, where the SMB protocol decoder in tcpdump 4.99.3 can perform an out-of-bounds write when parsing a crafted network packet. The vulnerability is network-exploitable and impacts systems running tcpdump against SMB traffic; the NVD metrics show...

6.5CVSS6.4AI score0.00841EPSS
CVE
CVE
added 2017/09/14 6:0 a.m.198 views

CVE-2017-13029

CVE-2017-13029 affects tcpdump prior to 4.9.2, due to a buffer over-read in the PPP parser (print_ccp_config_options). An attacker could potentially obtain sensitive information by sending a crafted packet. A fix is available in tcpdump 4.9.2 (e.g., Debian/DSA-3971-1). Validation details and patc...

9.8CVSS9.3AI score0.03428EPSS
CVE
CVE
added 2017/09/14 6:0 a.m.189 views

CVE-2017-13051

CVE-2017-13051 refers to a buffer over-read in tcpdump’s RSVP parser (print-rsvp.c:rsvp_obj_print()) present before version 4.9.2. The connected documents confirm this is a tcpdump parser vulnerability affecting RSVP parsing, with the issue described as a memory over-read/over-read risk in the RS...

9.8CVSS9.3AI score0.03652EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.182 views

CVE-2017-5203

CVE-2017-5203 affects tcpdump: a buffer overflow in the BOOTP parser (print-bootp.c:bootp_print()) exists in tcpdump before 4.9.0. Several connected advisories confirm this family of issues and indicate the fix is to upgrade to tcpdump 4.9.0 or later. The CentOS advisory and Debian/Arch Linux sec...

9.8CVSS9.5AI score0.03808EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.181 views

CVE-2016-8575

tcpdump contains a buffer overflow in the Q.933 parser (print-fr.c:q933_print) prior to version 4.9.0. An attacker could trigger this remotely by sending a crafted argument, potentially executing arbitrary code or causing a crash. The vulnerability is tracked as CVE-2016-8575 (and is part of a br...

9.8CVSS9.5AI score0.05504EPSS
CVE
CVE
added 2017/09/14 6:0 a.m.179 views

CVE-2017-13053

CVE-2017-13053 affects tcpdump prior to 4.9.2, due to a buffer over-read in the BGP parser (print-bgp.c:decode_rt_routing_info). The issue is in tcpdump’s BGP decoding path and upgraded builds (tcpdump 4.9.2 or later) are issued as the fix per linked advisories; exploitation details are not expli...

9.8CVSS9.3AI score0.03241EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.177 views

CVE-2017-5482

tcpdump (affected up to version 4.9.0) has a buffer overflow in the Q.933 parser (print-fr.c:q933_print()) that could allow remote code execution or a crash. The CVE entry CVE-2017-5482 is tied to this issue, and connected advisories indicate upgrading tcpdump to 4.9.0 fixes the vulnerability. Ot...

9.8CVSS9.5AI score0.05504EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.177 views

CVE-2017-5485

CVE-2017-5485 : tcpdump before 4.9.0 contains a buffer overflow in the ISO CLNS parser (addrtoname.c:lookup_nsap). The vulnerability allows remote attackers to potentially execute arbitrary code or crash the application by crafting overly long inputs. Public advisories confirm the issue as part o...

9.8CVSS9.5AI score0.03198EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.168 views

CVE-2017-5204

tcpdump (IPv6 parser) is affected by a buffer overflow in ip6_print() prior to version 4.9.0, allowing potential arbitrary code execution or crash via crafted input. The public details consistently reference CVE-2017-5204 and indicate the issue is mitigated by upgrading tcpdump to 4.9.0 or later....

9.8CVSS9.5AI score0.05997EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.167 views

CVE-2017-5484

CVE-2017-5484 affects tcpdump prior to 4.9.0, specifically the ATM parser in print-atm.c:sig_print(). The vulnerability is a buffer overflow that could allow a remote attacker to execute arbitrary code or crash the application by sending overly long input. Affected software is tcpdump (pre-4.9.0)...

9.8CVSS9.5AI score0.06196EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.166 views

CVE-2016-7924

tcpdump (before 4.9.0) is affected by CVE-2016-7924 due to a buffer overflow in the ATM parser: print-atm.c:oam_print(). An attacker may overflow a buffer by sending an overly long argument, potentially executing arbitrary code or crashing the application. Remediation per the documents is to upgr...

9.8CVSS9.5AI score0.03464EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.166 views

CVE-2017-5486

tcpdump before 4.9.0 is affected by a buffer overflow in the ISO CLNS parser (print-isoclns.c:clnp_print()), allowing remote attackers to craft packets that may execute arbitrary code or crash the program. This issue is detailed across multiple advisories (CVE-2017-5486; related CVEs such as 2016...

9.8CVSS9.5AI score0.03383EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.165 views

CVE-2016-7973

CVE-2016-7973 affects tcpdump up to version 4.9.0, where the AppleTalk parser (print-atalk.c) contains a buffer overflow vulnerability. An attacker could exploit the overly long AppleTalk argument to overflow a buffer and potentially execute arbitrary code or crash the application. The vulnerabil...

9.8CVSS9.5AI score0.03198EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.160 views

CVE-2017-5202

tcpdump-4.9.0 fixes CVE-2017-5202: buffer overflow in ISO CLNS parser (print-isoclns.c:clnp_print()) that could allow remote code execution or crash. Affected: tcpdump before 4.9.0; exploit via overly long argument. Remediation: upgrade to tcpdump 4.9.0 or later per multiple advisories (CentOS, D...

9.8CVSS9.5AI score0.03808EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.159 views

CVE-2016-7932

CVE-2016-7932 affects tcpdump’s PIM parser. A buffer overflow in print-pim.c:pimv2_check_checksum() could allow a remote attacker to overflow a buffer and execute arbitrary code or crash tcpdump. Affected versions are tcpdump prior to 4.9.0. Remediation: upgrade tcpdump to version 4.9.0 or newer ...

9.8CVSS9.5AI score0.03086EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.158 views

CVE-2016-7933

CVE-2016-7933 affects tcpdump prior to 4.9.0. The PPP parser in print-ppp.c:ppp_hdlc_if_print() has a buffer overflow vulnerability due to improper bounds checking, allowing a remote attacker to overflow a buffer and potentially execute arbitrary code or crash tcpdump. Remediation: upgrade tcpdum...

9.8CVSS9.5AI score0.03198EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.156 views

CVE-2016-7931

CVE-2016-7931 affects tcpdump and its MPLS parser. The vulnerability is a buffer overflow in print-mpls.c:mpls_print() present in tcpdump versions before 4.9.0, potentially allowing remote code execution or crash via crafted MPLS data. A fix is available in tcpdump 4.9.0 (upgrade recommended). Ot...

9.8CVSS9.5AI score0.03198EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.156 views

CVE-2016-7936

CVE-2016-7936: tcpdump before 4.9.0 has a buffer overflow in the UDP parser (print-udp.c:udp_print). A crafted packet could overflow a buffer and allow arbitrary code execution or crash. Affected upstream fixed by upgrading to tcpdump 4.9.0; various advisories (CentOS, Debian, Alpine) reference t...

9.8CVSS9.5AI score0.03198EPSS
CVE
CVE
added 2017/09/14 6:0 a.m.156 views

CVE-2017-13038

tcpdump CVE-2017-13038: A buffer over-read in the PPP parser (print-ppp.c handle_mlppp) affects tcpdump versions before 4.9.2. The issue can enable information disclosure and potential crash. Affected component: PPP parser in tcpdump; root cause: out-of-bounds read in PPP handling. Impact per CVS...

9.8CVSS9.3AI score0.04494EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.155 views

CVE-2016-7930

CVE-2016-7930 affects tcpdump, specifically the LLC/SNAP parser in print-llc.c:llc_print(). A crafted network packet can trigger a buffer overflow, potentially allowing remote code execution or a crash. Remediation: upgrade tcpdump to version 4.9.0 or later; multiple advisories confirm this fix (...

9.8CVSS9.5AI score0.03198EPSS
CVE
CVE
added 2017/01/28 1:33 a.m.155 views

CVE-2016-7974

CVE-2016-7974 : tcpdump before 4.9.0 is affected by a buffer overflow in the IP parser (print-ip.c). An attacker could send an overly long input to trigger the overflow, potentially executing arbitrary code or crashing tcpdump. The connected advisory details confirm this CVE is tied to tcpdump’s ...

9.8CVSS9.5AI score0.03198EPSS
Total number of security vulnerabilities172