Unrated severityNVD Advisory· Published Jan 24, 2023· Updated Nov 3, 2025
CVE-2023-0411
CVE-2023-0411
Description
Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
Affected products
22- osv-coords21 versionspkg:rpm/opensuse/wireshark&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/wireshark&distro=openSUSE%20Tumbleweedpkg:rpm/suse/wireshark&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/wireshark&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/wireshark&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/wireshark&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/wireshark&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.2pkg:rpm/suse/wireshark&distro=SUSE%20Manager%20Server%204.2
< 3.6.11-150000.3.83.1+ 20 more
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 4.0.3-2.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
- (no CPE)range: < 3.6.11-150000.3.83.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- lists.debian.org/debian-lts-announce/2023/02/msg00007.htmlmitremailing-list
- gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0411.jsonmitre
- gitlab.com/wireshark/wireshark/-/issues/18711mitre
- gitlab.com/wireshark/wireshark/-/issues/18720mitre
- gitlab.com/wireshark/wireshark/-/issues/18737mitre
- www.wireshark.org/security/wnpa-sec-2023-06.htmlmitre
News mentions
0No linked articles in our index yet.