CVE-2026-3606
published 2026-03-05CVE-2026-3606: A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file…
PriorityP425medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
0.16%
5.7th percentile
A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file src/ettercap/utils/etterfilter/ef_output.c of the component etterfilter. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | ettercap | < ettercap 1:0.8.4.1-1 (sid) | ettercap 1:0.8.4.1-1 (sid) |
| ettercap-project | ettercap | — | — |
| ettercap-project | ettercap | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv4.01.9LOWCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
nvdv2.01.7LOWAV:L/AC:L/Au:S/C:N/I:N/A:P
osv4.8MEDIUM
vendor_debian4.8LOW
vendor_redhat4.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2cjg-466r-p8w4: A vulnerability has been found in Ettercap 0
ghsa_unreviewed·2026-03-06
CVE-2026-3606 [MEDIUM] CWE-119 GHSA-2cjg-466r-p8w4: A vulnerability has been found in Ettercap 0
A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file src/ettercap/utils/etterfilter/ef_output.c of the component etterfilter. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
OSV
CVE-2026-3606: A vulnerability has been found in Ettercap 0
osv·2026-03-05·CVSS 4.8
CVE-2026-3606 [MEDIUM] CVE-2026-3606: A vulnerability has been found in Ettercap 0
A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file src/ettercap/utils/etterfilter/ef_output.c of the component etterfilter. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Red Hat
Ettercap: Ettercap: Denial of Service via out-of-bounds read in etterfilter
vendor_redhat·2026-03-05·CVSS 4.8
CVE-2026-3606 [MEDIUM] CWE-125 Ettercap: Ettercap: Denial of Service via out-of-bounds read in etterfilter
Ettercap: Ettercap: Denial of Service via out-of-bounds read in etterfilter
A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file src/ettercap/utils/etterfilter/ef_output.c of the component etterfilter. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
A flaw was found in Ettercap. A local user can exploit an out-of-bounds read vulnerability within the `add_data_segment` function of the `etterfilter` component. By manipulating input, an attacker can trigger this flaw, potentially leading to a denial of serv
Debian
CVE-2026-3606: ettercap - A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vuln...
vendor_debian·2026·CVSS 4.8
CVE-2026-3606 [MEDIUM] CVE-2026-3606: ettercap - A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vuln...
A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file src/ettercap/utils/etterfilter/ef_output.c of the component etterfilter. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: resolved (fixed in 1:0.8.4.1-1)
trixie: open
No detection rules found.
No public exploits indexed.
2026-03-05
Published