CVE-2023-4256

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 21, 2023

Updated: Mar 24, 2024

CWE ID 415

Summary

CVE-2023-4256 is a newly identified vulnerability affecting the tcprewrite component of tcpreplay. The issue lies within the tcpedit_dlt_cleanup() function in plugins/dlt_plugins.c, where a double free condition has been found. An attacker can exploit this vulnerability by supplying a specially crafted file to the tcprewrite binary. Successful exploitation could result in a Denial of Service (DoS) attack.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Fedora Operating System

Affected Vendors

Fedora Project
Broadcom

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sRM37N
https://www.cve.org/CVERecord?id=CVE-2023-4256
https://nvd.nist.gov/vuln/detail/CVE-2023-4256

Back to Vulnerability Database