CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

Search Vulnerabilities

Software

Searching vulnerabilities affecting “tcpdump”

39 vulnerabilities found for “tcpdump”

Page 1 of 2

CVE-2023-1801

MEDIUM6.5

The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet.

tcpdump / tcpdump

Network

Published Apr 7, 2023

Page 1 of 2

CVE-2019-15167

CRITICAL9.1

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulnerability than CVE-2018-14463.

tcpdump / tcpdump

Network

Published Aug 27, 2022

CVE-2020-8036

HIGH7.5

The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.

tcpdump / tcpdump

Network

Published Nov 4, 2020

CVE-2020-8037

HIGH7.5

The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.

tcpdump / tcpdump+21

Network

Published Nov 4, 2020

CVE-2018-14468

HIGH7.5

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

tcpdump / tcpdump+82

Network

Published Oct 3, 2019

CVE-2018-14466

HIGH7.5

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().

tcpdump / tcpdump+11

Network

Published Oct 3, 2019

CVE-2018-14879

HIGH7.0

The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().

f5 / traffix_signaling_delivery_controller+12

Local

Published Oct 3, 2019

CVE-2018-14880

HIGH7.5

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().

tcpdump / tcpdump+82

Network

Published Oct 3, 2019

CVE-2018-14469

HIGH7.5

The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().

fedoraproject / fedora+13

Network

Published Oct 3, 2019

CVE-2018-14465

HIGH7.5

The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

tcpdump / tcpdump+13

Network

Published Oct 3, 2019

CVE-2018-14463

HIGH7.5

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.

tcpdump / tcpdump+13

Network

Published Oct 3, 2019

CVE-2018-14461

HIGH7.5

The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().

tcpdump / tcpdump+11

Network

Published Oct 3, 2019

CVE-2018-14462

HIGH7.5

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().

tcpdump / tcpdump+13

Network

Published Oct 3, 2019

CVE-2018-10105

CRITICAL9.8

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).

tcpdump / tcpdump

Network

Published Oct 3, 2019

CVE-2018-14470

HIGH7.5

The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().

tcpdump / tcpdump+11

Network

Published Oct 3, 2019

CVE-2018-14467

HIGH7.5

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).

tcpdump / tcpdump+11

Network

Published Oct 3, 2019

CVE-2018-14464

HIGH7.5

The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().

tcpdump / tcpdump+11

Network

Published Oct 3, 2019

CVE-2018-10103

CRITICAL9.8

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).

tcpdump / tcpdump

Network

Published Oct 3, 2019

CVE-2019-1010220

LOW3.3

tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in function named "print_prefix", in "print-hncp.c". The attack vector is: The victim must open a specially crafted pcap file.

tcpdump / tcpdump

Local

Published Jul 22, 2019

CVE-2018-19519

MEDIUM5.5

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.

tcpdump / tcpdump

Local

Published Nov 25, 2018