Tcpdump Security Vulnerabilities and Issues — Tcpdump CVE List

Lucene search

TcpdumpTcpdump

33 matches found

CVE•added 2020/11/04 6:15 p.m.•340 views

CVE-2020-8037

The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.

7.5CVSS7.5AI score0.00212EPSS

CVE•added 2019/10/03 4:15 p.m.•322 views

CVE-2018-14463

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.

7.5CVSS8.7AI score0.01093EPSS

CVE•added 2019/10/03 4:15 p.m.•299 views

CVE-2018-16301

The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2019/10/03 4:15 p.m.•297 views

CVE-2018-14462

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().

7.5CVSS8.6AI score0.02537EPSS

CVE•added 2019/10/03 4:15 p.m.•276 views

CVE-2018-14465

The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

7.5CVSS8.6AI score0.02537EPSS

CVE•added 2019/10/03 4:15 p.m.•273 views

CVE-2018-14469

The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().

7.5CVSS8.6AI score0.04236EPSS

CVE•added 2019/10/03 4:15 p.m.•269 views

CVE-2018-16229

The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().

7.5CVSS8.6AI score0.03837EPSS

CVE•added 2019/10/03 5:15 p.m.•262 views

CVE-2019-15166

lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.

7.5CVSS6.8AI score0.00877EPSS

CVE•added 2019/10/03 4:15 p.m.•257 views

CVE-2018-14468

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

7.5CVSS8.6AI score0.02283EPSS

CVE•added 2019/10/03 4:15 p.m.•256 views

CVE-2018-16451

The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.

7.5CVSS8.7AI score0.00438EPSS

CVE•added 2019/10/03 4:15 p.m.•253 views

CVE-2018-14461

The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().

7.5CVSS8.6AI score0.00438EPSS

CVE•added 2019/10/03 4:15 p.m.•252 views

CVE-2018-16228

The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().

7.5CVSS8.6AI score0.0223EPSS

CVE•added 2019/10/03 4:15 p.m.•249 views

CVE-2018-16227

The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield.

7.5CVSS8.6AI score0.16057EPSS

CVE•added 2019/10/03 4:15 p.m.•243 views

CVE-2018-14879

The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().

7CVSS8.4AI score0.013EPSS

CVE•added 2019/10/03 4:15 p.m.•242 views

CVE-2018-14466

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().

7.5CVSS8.6AI score0.0223EPSS

CVE•added 2019/10/03 4:15 p.m.•242 views

CVE-2018-14467

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).

7.5CVSS8.6AI score0.02005EPSS

CVE•added 2019/10/03 4:15 p.m.•239 views

CVE-2018-14880

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().

7.5CVSS8.6AI score0.04236EPSS

CVE•added 2019/10/03 4:15 p.m.•239 views

CVE-2018-14882

The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.

7.5CVSS8.6AI score0.01693EPSS

CVE•added 2019/10/03 4:15 p.m.•235 views

CVE-2018-16230

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).

7.5CVSS8.6AI score0.00438EPSS

CVE•added 2019/10/03 4:15 p.m.•231 views

CVE-2018-14464

The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().

7.5CVSS8.6AI score0.0223EPSS

CVE•added 2019/10/03 4:15 p.m.•220 views

CVE-2018-14881

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).

7.5CVSS8.6AI score0.02939EPSS

CVE•added 2019/10/03 4:15 p.m.•217 views

CVE-2018-16300

The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.

7.5CVSS8.5AI score0.00366EPSS

CVE•added 2019/10/03 4:15 p.m.•209 views

CVE-2018-14470

The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().

7.5CVSS8.6AI score0.0223EPSS

CVE•added 2019/10/03 4:15 p.m.•203 views

CVE-2018-16452

The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.

7.5CVSS8.5AI score0.01235EPSS

CVE•added 2017/07/08 5:29 p.m.•119 views

CVE-2017-11108

tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol.

7.5CVSS8.1AI score0.01938EPSS

CVE•added 2017/09/14 6:29 a.m.•110 views

CVE-2017-12989

The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:resp_get_length().

7.5CVSS8.2AI score0.01143EPSS

CVE•added 2017/09/14 6:29 a.m.•106 views

CVE-2017-12990

The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions.

7.5CVSS8.4AI score0.01143EPSS

CVE•added 2017/09/14 6:29 a.m.•106 views

CVE-2017-12997

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print().

7.5CVSS8.2AI score0.01484EPSS

CVE•added 2017/09/14 6:29 a.m.•100 views

CVE-2017-12995

The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print().

7.5CVSS8.2AI score0.0067EPSS

CVE•added 2015/03/24 5:59 p.m.•88 views

CVE-2015-0261

Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.

7.5CVSS9.6AI score0.01517EPSS

CVE•added 2015/03/24 5:59 p.m.•86 views

CVE-2015-2155

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

7.5CVSS9.5AI score0.04982EPSS

CVE•added 2020/11/04 6:15 p.m.•59 views

CVE-2020-8036

The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.

7.5CVSS7.4AI score0.00237EPSS

CVE•added 2017/09/28 1:29 a.m.•53 views

CVE-2015-3138

print-wb.c in tcpdump before 4.7.4 allows remote attackers to cause a denial of service (segmentation fault and process crash).

7.5CVSS8.1AI score0.00935EPSS