CNNVD-202508-2220 Information
CNNVD ID
CNNVD-202508-2220
Related CVE
- CNNVD Published: 2025-08-19
Description (Chinese)
Appneta Tcpreplay是美国Appneta公司的一套基于UNIX操作系统用于编辑和重放网络流量的开源实用程序。 Appneta Tcpreplay 4.5.2-beta2及之前版本存在资源管理错误漏洞,该漏洞源于组件tcprewrite中文件edit_packet.c函数untrunc_packet存在释放后重用问题。
Description (English)
Appneta Tcpreplay is an open-source practical application based on the UNIX operating system of the United States company Appneta for editing and redisplaying network traffic. Appneta Tcpreplay 4.5.2-beta2 and previous versions had a resource management error loophole that originated from the tcprewrite file edit packet.c function unrunc packet with post-release reuse problem.
Hazard Level
High
Vulnerability Type
资源管理错误
Affected Vendor
Appneta
Published
2025-08-19
Last Modified
2026-02-24
References
https://drive.google.com/file/d/1_aONM_TOF96JbnYviPyZhVk-7HObtX8H/view?usp=sharing https://github.com/appneta/tcpreplay/commit/73008f261f1cdf7a1087dc8759115242696d35da https://vuldb.com/?id.320537 https://github.com/appneta/tcpreplay/issues/970#issuecomment-3198966053 https://vuldb.com/?submit.630495 https://vuldb.com/?ctiid.320537 https://nvd.nist.gov/vuln/detail/CVE-2025-9157
Patch
https://tcpreplay.appneta.com/wiki/installation.html#downloads
Share on: