cbcvebase.

Broadcom Tcpreplay vulnerabilities

51 known vulnerabilities affecting broadcom/tcpreplay.

Total CVEs
51
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH33MEDIUM16

Vulnerabilities

Page 1 of 3
CVE-2017-14266P3HIGHCVSS 7.8PoCv3.4.42017-09-12
CVE-2017-14266 [HIGH] CVE-2017-14266: tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.
nvdosv
CVE-2024-3024P3HIGHCVSS 7.8fixed in 4.4.42024-03-28
CVE-2024-3024 [HIGH] CWE-122 CVE-2024-3024: A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. T A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. This affects the function get_layer4_v6 of the file /tcpreplay/src/common/get.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-2583
nvd
CVE-2022-28487P3HIGHCVSS 7.5v4.4.12022-05-04
CVE-2022-28487 [HIGH] CWE-401 CVE-2022-28487: Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest threat from this vulnerability is to data confidentiality.
nvdosv
CVE-2025-51005P3HIGHCVSS 7.5v4.5.12025-09-23
CVE-2025-51005 [HIGH] CWE-122 CVE-2025-51005: A heap-buffer-overflow vulnerability exists in the tcpliveplay utility of the tcpreplay-4.5.1. When A heap-buffer-overflow vulnerability exists in the tcpliveplay utility of the tcpreplay-4.5.1. When a crafted pcap file is processed, the program incorrectly handles memory in the checksum calculation logic at do_checksum_math_liveplay in tcpliveplay.c, leading to a possible denial of service.
nvd
CVE-2017-6429P3HIGHCVSS 7.8≤ 4.1.22017-03-15
CVE-2017-6429 [HIGH] CWE-119 CVE-2017-6429: Buffer overflow in the tcpcapinfo utility in Tcpreplay before 4.2.0 Beta 1 allows remote attackers t Buffer overflow in the tcpcapinfo utility in Tcpreplay before 4.2.0 Beta 1 allows remote attackers to have unspecified impact via a pcap file with an over-size packet.
nvdosv
CVE-2025-51006P3HIGHCVSS 7.8v4.5.12025-09-22
CVE-2025-51006 [HIGH] CWE-415 CVE-2025-51006: Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dlt_linuxsll2_ Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dlt_linuxsll2_cleanup() function in plugins/dlt_linuxsll2/linuxsll2.c. This vulnerability is triggered when tcpedit_dlt_cleanup() indirectly invokes the cleanup routine multiple times on the same memory region. By supplying a specifically crafted pcap file to the tcp
nvdosv
CVE-2020-12740P3CRITICALCVSS 9.1≤ 4.3.22020-05-08
CVE-2020-12740 [CRITICAL] CWE-125 CVE-2020-12740: tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. Th tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c.
nvdosv
CVE-2025-9019P3MEDIUMCVSS 5.9v4.5.12025-08-15
CVE-2025-9019 [MEDIUM] CWE-119 CVE-2025-9019: A vulnerability has been found in tcpreplay 4.5.1. This vulnerability affects the function mask_cidr A vulnerability has been found in tcpreplay 4.5.1. This vulnerability affects the function mask_cidr6 of the file cidr.c of the component tcpprep. The manipulation leads to heap-based buffer overflow. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclos
nvdosv
CVE-2024-22654P3HIGHCVSS 7.5v4.4.42025-05-29
CVE-2024-22654 [HIGH] CWE-835 CVE-2024-22654: tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c. tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c.
nvdosv
CVE-2020-24266P3HIGHCVSS 7.5v4.3.32020-10-19
CVE-2020-24266 [HIGH] CWE-787 CVE-2020-24266: An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability i An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in get_l2len() that can make tcpprep crash and cause a denial of service.
nvdosv
CVE-2020-24265P3HIGHCVSS 7.5v4.3.32020-10-19
CVE-2020-24265 [HIGH] CWE-787 CVE-2020-24265: An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability i An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in MemcmpInterceptorCommon() that can make tcpprep crash and cause a denial of service.
nvdosv
CVE-2023-27784P3HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27784 [HIGH] CWE-476 CVE-2023-27784: An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the re An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the read_hexstring function at the utils.c:309 endpoint.
nvdosv
CVE-2023-27788P3HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27788 [HIGH] CWE-617 CVE-2023-27788: An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the p An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the ports2PORT function at the portmap.c:69 endpoint.
nvdosv
CVE-2018-18408P4CRITICALCVSS 9.8v4.3.02018-10-17
CVE-2018-18408 [CRITICAL] CWE-416 CVE-2018-18408: A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The issue gets tri A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The issue gets triggered in the function post_args() at tcpbridge.c, causing a denial of service or possibly unspecified other impact.
nvdosv
CVE-2022-27418P4HIGHCVSS 7.8v4.4.12022-04-12
CVE-2022-27418 [HIGH] CWE-787 CVE-2022-27418: Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c. Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c.
nvdosv
CVE-2023-27783P4HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27783 [HIGH] CWE-617 CVE-2023-27783: An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpedit_dlt_cleanup function at plugins/dlt_plugins.c.
nvdosv
CVE-2023-27789P4HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27789 [HIGH] CWE-617 CVE-2023-27789: An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178 endpoint.
nvdosv
CVE-2023-27785P4HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27785 [HIGH] CWE-476 CVE-2023-27785: An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker to cause a denial of service vi An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse endpoints function.
nvdosv
CVE-2023-27787P4HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27787 [HIGH] CWE-476 CVE-2023-27787: An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the pars An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81 endpoint.
nvdosv
CVE-2018-13112P4HIGHCVSS 7.5v4.3.02018-07-03
CVE-2018-13112 [HIGH] CWE-125 CVE-2018-13112: get_l2len in common/get.c in Tcpreplay 4.3.0 beta1 allows remote attackers to cause a denial of serv get_l2len in common/get.c in Tcpreplay 4.3.0 beta1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packets, as demonstrated by tcpprep.
nvdosv
Broadcom Tcpreplay vulnerabilities | cvebase