CVE-2017-12896
CRITICALTcpdump < 4.9.1 - Out-of-Bounds Read
Title source: ruleDescription
The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print().
Scores
CVSS v3
9.8
EPSS
0.0206
EPSS Percentile
83.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-125
Status
draft
Affected Products (7)
tcpdump/tcpdump
< 4.9.1
debian/debian_linux
debian/debian_linux
redhat/enterprise_linux_desktop
redhat/enterprise_linux_server
redhat/enterprise_linux_server_aus
redhat/enterprise_linux_server_aus
Timeline
Published
Sep 14, 2017
Tracked Since
Feb 18, 2026