CVE-2025-9386

A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function get_l2len_protocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Upgrading to version 4.5.2-beta3 is sufficient to resolve this issue. You should upgrade the affected component.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
VulDBCNA
5.3 MEDIUM
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
VendorProductVersion
broadcomtcpreplay
𝑥
≤ 4.5.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tcpreplay
bullseye
unimportant
bookworm
unimportant
trixie
unimportant
forky
4.5.2-1
fixed
sid
4.5.2-1
fixed
Common Weakness Enumeration
References
https://drive.google.com/file/d/1DcQWaTmj1HSbRidOCWwe9vtgHsBnFuX7/view?usp=sharing
https://github.com/appneta/tcpreplay/issues/973
https://vuldb.com/?ctiid.321219
https://vuldb.com/?id.321219
https://vuldb.com/?submit.630498