) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): Wireshark
- Search Type: Search All
- CPE Name Search: false
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-0666 |
Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. Published: June 06, 2023; 11:15:09 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2952 |
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file Published: May 30, 2023; 7:15:09 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2879 |
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file Published: May 26, 2023; 5:15:19 PM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-2858 |
NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:18 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2857 |
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:18 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2856 |
VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:17 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2855 |
Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:17 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-2854 |
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Published: May 26, 2023; 5:15:17 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-1994 |
GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Published: April 12, 2023; 6:15:13 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-1993 |
LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Published: April 12, 2023; 5:15:16 PM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-1992 |
RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Published: April 12, 2023; 5:15:15 PM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-1161 |
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file Published: March 06, 2023; 4:15:10 PM -0500 |
V3.1: 7.1 HIGH V2.0:(not available) |
| CVE-2023-0417 |
Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:08 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0416 |
GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:08 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0415 |
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:08 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0414 |
Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0413 |
Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2023-0412 |
TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 7.1 HIGH V2.0:(not available) |
| CVE-2023-0411 |
Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Published: January 26, 2023; 4:18:07 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2022-4345 |
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file Published: January 11, 2023; 11:15:10 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |