Tcpdump CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (172 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-14461	6 Apple, Debian, Fedoraproject and 3 more	6 Mac Os X, Debian Linux, Fedora and 3 more	2025-12-03	7.5 High
The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().
CVE-2018-16452	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-12-03	7.5 High
The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.
CVE-2018-16451	6 Apple, Debian, Fedoraproject and 3 more	6 Mac Os X, Debian Linux, Fedora and 3 more	2025-12-03	9.8 Critical
The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.
CVE-2018-16300	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-12-03	7.5 High
The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.
CVE-2018-16230	6 Apple, Debian, Fedoraproject and 3 more	6 Mac Os X, Debian Linux, Fedora and 3 more	2025-12-03	9.8 Critical
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).
CVE-2018-16228	6 Apple, Debian, Fedoraproject and 3 more	6 Mac Os X, Debian Linux, Fedora and 3 more	2025-12-03	9.8 Critical
The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().
CVE-2019-15167	1 Tcpdump	1 Tcpdump	2025-12-03	9.1 Critical
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulnerability than CVE-2018-14463.
CVE-2019-15166	8 Apple, Canonical, Debian and 5 more	10 Mac Os X, Ubuntu Linux, Debian Linux and 7 more	2025-12-03	1.6 Low
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
CVE-2016-7975	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().
CVE-2017-12991	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
CVE-2016-7974	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.
CVE-2016-7927	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in print-802_11.c:ieee802_11_radio_print().
CVE-2017-12989	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:resp_get_length().
CVE-2016-7973	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.
CVE-2017-12988	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse().
CVE-2017-12987	3 Debian, Redhat, Tcpdump	6 Debian Linux, Enterprise Linux, Enterprise Linux Desktop and 3 more	2025-04-20	9.8 Critical
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().
CVE-2016-7940	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The STP parser in tcpdump before 4.9.0 has a buffer overflow in print-stp.c, multiple functions.
CVE-2016-7926	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The Ethernet parser in tcpdump before 4.9.0 has a buffer overflow in print-ether.c:ethertype_print().
CVE-2017-12986	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().
CVE-2016-7939	2 Redhat, Tcpdump	2 Enterprise Linux, Tcpdump	2025-04-20	N/A
The GRE parser in tcpdump before 4.9.0 has a buffer overflow in print-gre.c, multiple functions.

« first previous Page 4 of 9. next last »