Every CVE whose affected-product data names Tcpdump Libpcap, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2011-1935 — CVSS 9.8 (critical): pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might…
CVE-2019-15163 — CVSS 7.5 (high): rpcapd/daemon.c in libpcap before 1.9.1 allows attackers to cause a denial of service (NULL pointer dereference and daemon crash) if a…
CVE-2019-15162 — CVSS 5.3 (medium): rpcapd/daemon.c in libpcap before 1.9.1 on non-Windows platforms provides details about why authentication failed, which might make it…
CVE-2019-15165 — CVSS 5.3 (medium): sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.
CVE-2019-15164 — CVSS 5.3 (medium): rpcapd/daemon.c in libpcap before 1.9.1 allows SSRF because a URL may be provided as a capture source.
CVE-2019-15161 — CVSS 5.3 (medium): rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector…
CVE-2023-7256 — CVSS 4.4 (medium): In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and…
CVE-2024-8006 — CVSS 4.4 (medium): Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one…