CVE-2020-8037

Published: 04/11/2020 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

It exists that tcpdump incorrectly handled certain captured data. An attacker could possibly use this issue to cause a denial of service. (CVE-2020-8037)

Vulnerable Product	Search on Vulmon	Subscribe to Product
tcpdump tcpdump 4.9.3
debian debian linux 9.0
fedoraproject fedora 32
fedoraproject fedora 33
apple mac os x
apple mac os x 10.14.6
apple mac os x 10.15.7
apple macos

Debian Bug report logs - #973877 tcpdump: CVE-2020-8037 Package: src:tcpdump; Maintainer for src:tcpdump is Romain Francoise <rfrancoise@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 6 Nov 2020 12:48:01 UTC Severity: important Tags: security, upstream Found in versions tcpdump/493- ...

Several security issues were fixed in tcpdump ...

CWE-770 https://github.com/the-tcpdump-group/tcpdump/commit/32027e199368dad9508965aae8cd8de5b6ab5231 https://lists.debian.org/debian-lts-announce/2020/11/msg00018.html https://support.apple.com/kb/HT212327 https://support.apple.com/kb/HT212326 https://support.apple.com/kb/HT212325 http://seclists.org/fulldisclosure/2021/Apr/51 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWDBONZVLC6BAOR2KM376DJCM4H3FERV/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2MX34MJIUJQGL6CMEPLTKFOOOC3CJ4Z/https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973877 https://ubuntu.com/security/notices/USN-5331-2

CVE-2020-8037

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect