CVE-2017-12987 — Out-of-bounds Read in Tcpdump
Severity
9.8CRITICALNVD
OSV7.5
EPSS
2.1%
top 16.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedSep 14
Latest updateSep 9
Description
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9
Affected Packages7 packages
Also affects: Debian Linux 10.0, 9.0, Enterprise Linux 7.6, 7.7
Patches
🔴Vulnerability Details
3📋Vendor Advisories
5📄Research Papers
1arXiv▶
PatchSeeker: Mapping NVD Records to their Vulnerability-fixing Commits with LLM Generated Commits and Embeddings↗2025-09-09
💬Community
2Bugzilla▶
CVE-2017-12987 tcpdump: Buffer over-read in print-802_11.c:parse_elements() in IEEE 802.11 parser↗2017-09-11
Bugzilla▶
CVE-2017-11541 CVE-2017-11542 CVE-2017-11543 CVE-2017-11544 CVE-2017-11545 CVE-2017-12893 CVE-2017-12894 CVE-2017-12895 CVE-2017-12896 CVE-2017-12897 CVE-2017-12898 CVE-2017-12899 CVE-2017-12900 CVE-2↗2017-07-26