) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product: cpe:/:wireshark:wireshark
- CVSS Version: 3
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-2856 |
VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:17 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2855 |
Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:17 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2854 |
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:17 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-1994 |
GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Published: April 12, 2023; 6:15:13 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-1993 |
LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Published: April 12, 2023; 5:15:16 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-1992 |
RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Published: April 12, 2023; 5:15:15 PM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-1161 |
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file Published: March 06, 2023; 4:15:10 PM -0500 |
V3.1: 7.1 HIGH V2.0:(not available) |
| CVE-2023-0417 |
Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:08 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0416 |
GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:08 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0415 |
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:08 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0414 |
Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0413 |
Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0412 |
TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 7.1 HIGH V2.0:(not available) |
| CVE-2023-0411 |
Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2022-4345 |
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file Published: January 11, 2023; 11:15:10 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2022-4344 |
Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file Published: January 11, 2023; 7:15:08 PM -0500 |
V3.1: 4.3 MEDIUM V2.0:(not available) |
| CVE-2022-3724 |
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file on Windows Published: December 09, 2022; 1:15:19 PM -0500 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-3725 |
Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file Published: October 27, 2022; 1:15:10 PM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-3190 |
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file Published: September 13, 2022; 11:15:09 AM -0400 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
| CVE-2022-0585 |
Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file Published: February 18, 2022; 1:15:11 PM -0500 |
V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM |