CVE-2025-9157

Public Exploit

appneta tcpreplay tcprewrite edit_packet.c untrunc_packet use after free

Description

A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untrunc_packet of the file src/tcpedit/edit_packet.c of the component tcprewrite. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. This patch is called 73008f261f1cdf7a1087dc8759115242696d35da. Applying a patch is advised to resolve this issue.

References

Link	Tags
https://vuldb.com/?id.320537	vdb entry technical description
https://vuldb.com/?ctiid.320537	permissions required signature
https://vuldb.com/?submit.630495	third party advisory
https://github.com/appneta/tcpreplay/issues/970	issue tracking
https://github.com/appneta/tcpreplay/issues/970#issuecomment-3198966053	issue tracking
https://drive.google.com/file/d/1_aONM_TOF96JbnYviPyZhVk-7HObtX8H/view?usp=sharing	exploit
https://github.com/appneta/tcpreplay/commit/73008f261f1cdf7a1087dc8759115242696d35da	patch

Frequently Asked Questions

What is the severity of CVE-2025-9157?: CVE-2025-9157 has been scored as a medium severity vulnerability.
How to fix CVE-2025-9157?: To fix CVE-2025-9157, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-9157 being actively exploited in the wild?: It is possible that CVE-2025-9157 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-9157?: CVE-2025-9157 affects appneta tcpreplay.

Description

Category

CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer

References

Frequently Asked Questions