Reachable Assertion Vulnerability in tcpprep by AppNeta
CVE-2022-25484

5.5MEDIUM

Key Information:

Vendor: Broadcom
Status: Tcpreplay
Vendor: CVE Published:; 22 March 2022

What is CVE-2022-25484?

In tcpprep v4.4.1, a reachable assertion is present in the packet2tree() function located in tree.c. This vulnerability could lead to unintended behavior, potentially impacting the integrity of network packet processing. Users are recommended to review their usage of this software version and update accordingly to mitigate associated risks.

References

https://github.com/appneta/tcpreplay/issues/715

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 22, 2022
Vulnerability Reserved
Feb 21, 2022

Broadcom

What is CVE-2022-25484?

References

CVSS V3.1

Timeline