- What is the Tcpdump CNA?
- Tcpdump is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 10 CVE records since 2019.
- How many CVEs has Tcpdump published?
- Tcpdump has published 10 CVE records, including 5 in the last two years.
- What is Tcpdump's CVE data quality grade?
- RadicalNotion.AI grades Tcpdump's CVE data quality as B, with an overall completeness score of 82.5%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (50%), and CWE (80%) information.
- What products does Tcpdump publish CVEs for?
- Tcpdump most frequently publishes CVEs for tcpdump, libpcap, debian linux, mac os x, tcpslice.
- Which vendors does Tcpdump cover?
- Tcpdump publishes CVEs across 2 distinct vendors, most often tcpdump, apple, debian, fedoraproject.
- Is Tcpdump actively publishing CVEs?
- Tcpdump is currently active, based on 5 CVEs in the last two years.
- What is the average severity of Tcpdump's CVEs?
- The average CVSS base score across Tcpdump's scored CVEs is 3.8.
- Are any of Tcpdump's CVEs in CISA's Known Exploited Vulnerabilities catalog?
- No. None of Tcpdump's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
- What are the most common weakness types in Tcpdump's CVEs?
- Tcpdump's CVEs most often map to these CWE weakness types: CWE-787 (Out-of-bounds Write), CWE-190 (Integer Overflow or Wraparound), CWE-415 (Double Free), CWE-122 (Heap-based Buffer Overflow).
- How does Tcpdump rank among CNAs?
- By total CVE volume, Tcpdump ranks #305 of 370 CNAs, and it reports more complete CVE records than 31% of all CNAs.