Unrated severityNVD Advisory· Published Mar 6, 2023· Updated Nov 3, 2025

CVE-2023-1161

Description

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

Affected products

osv-coords5 versions
pkg:rpm/opensuse/wireshark&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/wireshark&distro=openSUSE%20Tumbleweed pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3
< 3.6.12-150000.3.86.1+ 4 more
- (no CPE)range: < 3.6.12-150000.3.86.1
- (no CPE)range: < 4.0.4-2.1
- (no CPE)range: < 3.6.12-150000.3.86.1
- (no CPE)range: < 3.6.12-150000.3.86.1
- (no CPE)range: < 3.6.12-150000.3.86.1
Wireshark/Wiresharkv5
Range: >=4.0.0, <4.0.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.gentoo.org/glsa/202309-02mitrevendor-advisory
www.debian.org/security/2023/dsa-5429mitrevendor-advisory
lists.debian.org/debian-lts-announce/2023/04/msg00029.htmlmitremailing-list
gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1161.jsonmitre
gitlab.com/wireshark/wireshark/-/issues/18839mitre
www.wireshark.org/security/wnpa-sec-2023-08.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000