Null Pointer Dereference in Tcpreplay Product by Appneta
CVE-2023-43279

6.5MEDIUM

Key Information:

Vendor

Appneta

Status
Tcpreplay
Vendor
CVE Published:
12 March 2024

What is CVE-2023-43279?

The null pointer dereference vulnerability in the mask_cidr6 component of the Tcpreplay application (version 4.4.4) allows attackers to disrupt application functionality. By employing a specially crafted tcprewrite command, an attacker can trigger a crash, which may lead to denial of service conditions. This flaw emphasizes the need for timely updates and vigilant security measures to mitigate potential exploitation risks associated with command handling in network packet replay tools.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://github.com/appneta/tcpreplay/issues/824
https://lists.fedoraproject.org/archives/list/package-ann...
vendor-advisory
https://lists.fedoraproject.org/archives/list/package-ann...
vendor-advisory

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.