VYPR

tcprewrite

by tcpreplay

CVEs (11)

  • CVE-2020-12740CriMay 8, 2020
    risk 0.59cvss 9.1epss 0.02

    tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c.

  • CVE-2017-14266HigSep 12, 2017
    risk 0.54cvss 7.8epss 0.04

    tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.

  • CVE-2022-37048HigAug 18, 2022
    risk 0.51cvss 7.8epss 0.00

    The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941.

  • CVE-2022-37047HigAug 18, 2022
    risk 0.51cvss 7.8epss 0.00

    The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940.

  • CVE-2022-27941HigMar 26, 2022
    risk 0.51cvss 7.8epss 0.01

    tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.

  • CVE-2022-27940HigMar 26, 2022
    risk 0.51cvss 7.8epss 0.01

    tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.

  • CVE-2016-6160HigJan 23, 2017
    risk 0.49cvss 7.5epss 0.02

    tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266.

  • CVE-2023-4256MedDec 21, 2023
    risk 0.36cvss 5.5epss 0.00

    Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the tcpedit_dlt_cleanup() function within plugins/dlt_plugins.c. This vulnerability can be exploited by supplying a specifically crafted file to the tcprewrite binary. This flaw enables a local…

  • CVE-2022-27939MedMar 26, 2022
    risk 0.36cvss 5.5epss 0.01

    tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c.

  • CVE-2025-51006Sep 22, 2025
    risk 0.00cvss epss 0.00

    Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dlt_linuxsll2_cleanup() function in plugins/dlt_linuxsll2/linuxsll2.c. This vulnerability is triggered when tcpedit_dlt_cleanup() indirectly invokes the cleanup routine multiple times on the…

  • CVE-2023-27783HigMar 16, 2023
    risk 0.00cvss 7.5epss 0.02

    An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpedit_dlt_cleanup function at plugins/dlt_plugins.c.