The command-line argument parser in tcpdump before 4
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
Exploitability
AV:L
AC:H
PR:N
UI:R
Scope
S:U
Impact
C:H
I:H
A:H
7/CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H