Every CVE whose affected-product data names Broadcom Tcpreplay, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2018-18408 — CVSS 9.8 (critical): A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The issue gets triggered in the function post_args() at…
CVE-2020-12740 — CVSS 9.1 (critical): tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the…
CVE-2025-51006 — CVSS 7.8 (high): Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dlt_linuxsll2_cleanup() function in…
CVE-2022-37049 — CVSS 7.8 (high): The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE…
CVE-2022-37048 — CVSS 7.8 (high): The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at…
CVE-2022-37047 — CVSS 7.8 (high): The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713…
CVE-2019-8376 — CVSS 7.8 (high): An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can…
CVE-2019-8377 — CVSS 7.8 (high): An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This…
CVE-2019-8381 — CVSS 7.8 (high): An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checksum.c. It can be triggered by sending a…
CVE-2022-27941 — CVSS 7.8 (high): tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.
CVE-2017-14266 — CVSS 7.8 (high): tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to…
CVE-2017-6429 — CVSS 7.8 (high): Buffer overflow in the tcpcapinfo utility in Tcpreplay before 4.2.0 Beta 1 allows remote attackers to have unspecified impact via a pcap…
CVE-2022-27940 — CVSS 7.8 (high): tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.
CVE-2023-27788 — CVSS 7.5 (high): An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the ports2PORT function at the portmap.c:69…
CVE-2018-13112 — CVSS 7.5 (high): get_l2len in common/get.c in Tcpreplay 4.3.0 beta1 allows remote attackers to cause a denial of service (heap-based buffer over-read and…
CVE-2020-24265 — CVSS 7.5 (high): An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in MemcmpInterceptorCommon() that can…
CVE-2020-24266 — CVSS 7.5 (high): An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in get_l2len() that can make tcpprep…
CVE-2022-28487 — CVSS 7.5 (high): Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest threat from this vulnerability is to…
CVE-2023-27783 — CVSS 7.5 (high): An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpedit_dlt_cleanup function…
CVE-2023-27784 — CVSS 7.5 (high): An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the read_hexstring function at the…
CVE-2023-27785 — CVSS 7.5 (high): An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse endpoints function.
CVE-2023-27786 — CVSS 7.5 (high): An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the macinstring function.
CVE-2023-27787 — CVSS 7.5 (high): An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81…
CVE-2016-6160 — CVSS 7.5 (high): tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related…
CVE-2023-27789 — CVSS 7.5 (high): An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178…
CVE-2024-22654 — CVSS 7.5 (high): tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c.
CVE-2025-51005 — CVSS 7.5 (high): A heap-buffer-overflow vulnerability exists in the tcpliveplay utility of the tcpreplay-4.5.1. When a crafted pcap file is processed, the…
CVE-2018-17580 — CVSS 7.1 (high): A heap-based buffer over-read exists in the function fast_edit_packet() in the file send_packets.c of Tcpreplay v4.3.0 beta1. This can lead…
CVE-2018-17582 — CVSS 7.1 (high): Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The get_next_packet() function in the send_packets.c file uses the memcpy()…
CVE-2023-43279 — CVSS 6.5 (medium): Null Pointer Dereference in mask_cidr6 component at cidr.c in Tcpreplay 4.4.4 allows attackers to crash the application via crafted…
CVE-2020-23273 — CVSS 5.5 (medium): Heap-buffer overflow in the randomize_iparp function in edit_packet.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service…
CVE-2020-18976 — CVSS 5.5 (medium): Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'do_checksum' function in 'checksum.c'. It can be…
CVE-2018-18407 — CVSS 5.5 (medium): A heap-based buffer over-read was discovered in the tcpreplay-edit binary of Tcpreplay 4.3.0 beta1, during the incremental checksum…
CVE-2018-17974 — CVSS 5.5 (medium): An issue was discovered in Tcpreplay 4.3.0 beta1. A heap-based buffer over-read was triggered in the function dlt_en10mb_encode() of the…
CVE-2023-4256 — CVSS 5.5 (medium): Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the tcpedit_dlt_cleanup() function within…
CVE-2022-25484 — CVSS 5.5 (medium): tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1.
CVE-2025-9385 — CVSS 5.3 (medium): A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fix_ipv6_checksums of the file edit_packet.c…
CVE-2024-3024 — CVSS 5.3 (medium): A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. This affects the function get_layer4_v6…
CVE-2025-9386 — CVSS 5.3 (medium): A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function get_l2len_protocol of the file get.c…
CVE-2025-9384 — CVSS 3.3 (low): A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpedit_post_args of the file…
CVE-2025-9649 — CVSS 3.3 (low): A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function calc_sleep_time of the file send_packets.c…
CVE-2025-9019 — CVSS 3.1 (low): A vulnerability has been found in tcpreplay 4.5.1. This vulnerability affects the function mask_cidr6 of the file cidr.c of the component…