CVE-2025-9386

appneta tcpreplay tcprewrite get.c get_l2len_protocol use after free

CVSS 4.8 MEDIUMEPSS 0.2%CWE-119 CWE-416

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 4.8EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

24 Aug 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function get_l2len_protocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Upgrading to version 4.5.2-beta3 is sufficient to resolve this issue. You should upgrade the affected component.

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Affected products

appneta · tcpreplay

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://drive.google.com/file/d/1DcQWaTmj1HSbRidOCWwe9vtgHsBnFuX7/view?usp=sharing https://github.com/appneta/tcpreplay/issues/973 https://vuldb.com/?ctiid.321219 https://vuldb.com/?id.321219 https://vuldb.com/?submit.630498