CVE-2024-3024 | appneta tcpreplay up to 4.4.4 get.c get_layer4_v6 heap-based overflow

Inserito da Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability was found in appneta tcpreplay up to 4.4.4. It has been classified as problematic. This affects the function get_layer4_v6 of the file /tcpreplay/src/common/get.c. The manipulation leads to heap-based buffer overflow.

This vulnerability is uniquely identified as CVE-2024-3024. Attacking locally is a requirement. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3024 | appneta tcpreplay up to 4.4.4 get.c get_layer4_v6 heap-based overflow

Post correlati

CVE-2021-47469 | Linux Kernel up to 5.14.14 spi_add_lock deadlock (722ef19a161c/6098475d4cb4)

CVE-2024-46632 | Open Asset Import Library Assimp 5.4.3 LoadMD5MeshFile buffer overflow

CVE-2024-45298 | requarks wiki 2.5.303 control flow (GHSA-vwww-c5vg-xgfc)

CVE-2024-5829 | smallweigit Avue up to 3.4.4 avueUeditor cross site scripting (I9UQ4Q)