Broadcom Tcpreplay vulnerabilities
51 known vulnerabilities affecting broadcom/tcpreplay.
Total CVEs
51
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH33MEDIUM16
Vulnerabilities
Page 2 of 3
CVE-2016-6160P4HIGHCVSS 7.5≤ 4.1.12017-01-23
CVE-2016-6160 [HIGH] CWE-399 CVE-2016-6160: tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentat
tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266.
nvdosv
CVE-2022-27942P4HIGHCVSS 7.8v4.4.12022-03-26
CVE-2022-27942 [HIGH] CWE-125 CVE-2022-27942: tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c.
tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c.
nvdosv
CVE-2022-27941P4HIGHCVSS 7.8v4.4.12022-03-26
CVE-2022-27941 [HIGH] CWE-125 CVE-2022-27941: tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.
nvdosv
CVE-2022-27940P4HIGHCVSS 7.8v4.4.12022-03-26
CVE-2022-27940 [HIGH] CWE-125 CVE-2022-27940: tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.
nvdosv
CVE-2023-27786P4HIGHCVSS 7.5v4.4.32023-03-16
CVE-2023-27786 [HIGH] CWE-476 CVE-2023-27786: An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the maci
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the macinstring function.
nvdosv
CVE-2022-37047P4HIGHCVSS 7.8v4.4.12022-08-18
CVE-2022-37047 [HIGH] CVE-2022-37047: The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940.
nvdosv
CVE-2022-37048P4HIGHCVSS 7.8v4.4.12022-08-18
CVE-2022-37048 [HIGH] CVE-2022-37048: The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941.
nvdosv
CVE-2022-37049P4HIGHCVSS 7.8v4.4.12022-08-18
CVE-2022-37049 [HIGH] CVE-2022-37049: The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in
The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942.
nvdosv
CVE-2022-27416P4HIGHCVSS 7.8v4.4.12022-04-12
CVE-2022-27416 [HIGH] CWE-415 CVE-2022-27416: Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free.
Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free.
nvdosv
CVE-2019-8377P4HIGHCVSS 7.8v4.3.12019-02-17
CVE-2019-8377 [HIGH] CWE-476 CVE-2019-8377: An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
nvdosv
CVE-2019-8376P4HIGHCVSS 7.8v4.3.12019-02-17
CVE-2019-8376 [HIGH] CWE-476 CVE-2019-8376: An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
nvdosv
CVE-2018-20553P4HIGHCVSS 7.8fixed in 4.3.12018-12-28
CVE-2018-20553 [HIGH] CWE-125 CVE-2018-20553: Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c.
Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c.
nvdosv
CVE-2018-20552P4HIGHCVSS 7.8fixed in 4.3.12018-12-28
CVE-2018-20552 [HIGH] CWE-125 CVE-2018-20552: Tcpreplay before 4.3.1 has a heap-based buffer over-read in packet2tree in tree.c.
Tcpreplay before 4.3.1 has a heap-based buffer over-read in packet2tree in tree.c.
nvdosv
CVE-2019-8381P4HIGHCVSS 7.8v4.3.12019-02-17
CVE-2019-8381 [HIGH] CWE-119 CVE-2019-8381: An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checks
An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checksum.c. It can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
nvdosv
CVE-2023-43279P4MEDIUMCVSS 6.5v4.4.42024-03-12
CVE-2023-43279 [MEDIUM] CWE-476 CVE-2023-43279: Null Pointer Dereference in mask_cidr6 component at cidr.c in Tcpreplay 4.4.4 allows attackers to cr
Null Pointer Dereference in mask_cidr6 component at cidr.c in Tcpreplay 4.4.4 allows attackers to crash the application via crafted tcprewrite command.
nvdosv
CVE-2025-9386P4MEDIUMCVSS 5.5≤ 4.5.12025-08-24
CVE-2025-9386 [MEDIUM] CWE-119 CVE-2025-9386: A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the functio
A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function get_l2len_protocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Upgrading to version 4.5.2-beta3 is suff
nvdosv
CVE-2018-17582P4HIGHCVSS 7.1v4.3.02018-09-28
CVE-2018-17582 [HIGH] CWE-125 CVE-2018-17582: Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The get_next_packet() function in the
Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The get_next_packet() function in the send_packets.c file uses the memcpy() function unsafely to copy sequences from the source buffer pktdata to the destination (*prev_packet)->pktdata. This will result in a Denial of Service (DoS) and potentially Information Exposure when the application
nvdosv
CVE-2025-9649P4MEDIUMCVSS 5.5v4.5.12025-08-29
CVE-2025-9649 [MEDIUM] CWE-369 CVE-2025-9649: A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function calc
A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function calc_sleep_time of the file send_packets.c. Such manipulation leads to divide by zero. An attack has to be approached locally. The exploit has been disclosed publicly and may be used. Upgrading to version 4.5.3-beta3 is recommended to address this issue. It
nvdosv
CVE-2025-9157P4MEDIUMCVSS 4.8≥ 0, < 4.5.2-12025-08-19
CVE-2025-9157 [MEDIUM] CVE-2025-9157: A vulnerability was determined in appneta tcpreplay up to 4
A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untrunc_packet of the file src/tcpedit/edit_packet.c of the component tcprewrite. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. This patch is called 73008f261f1cdf7a1087dc87
osv
CVE-2018-17580P4HIGHCVSS 7.1v4.3.02018-09-28
CVE-2018-17580 [HIGH] CWE-125 CVE-2018-17580: A heap-based buffer over-read exists in the function fast_edit_packet() in the file send_packets.c o
A heap-based buffer over-read exists in the function fast_edit_packet() in the file send_packets.c of Tcpreplay v4.3.0 beta1. This can lead to Denial of Service (DoS) and potentially Information Exposure when the application attempts to process a crafted pcap file.
nvdosv