Unrated severityNVD Advisory· Published Apr 12, 2023· Updated Nov 3, 2025

CVE-2023-1992

Description

RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

Affected products

osv-coords19 versions
pkg:rpm/opensuse/wireshark&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/wireshark&distro=openSUSE%20Tumbleweed pkg:rpm/suse/wireshark&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/wireshark&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/wireshark&distro=SUSE%20Manager%20Proxy%204.2 pkg:rpm/suse/wireshark&distro=SUSE%20Manager%20Server%204.2
< 3.6.13-150000.3.89.1+ 18 more
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 4.0.5-1.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
- (no CPE)range: < 3.6.13-150000.3.89.1
Wireshark/Wiresharkv5
Range: >=4.0.0, <4.0.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EHLTD25WNQSPQNELX52UH6YLP4TBLKTT/mitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FZA7IMATNNQPLIM6WMRPM3T5ZY24NRR2/mitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PFJERBHVWYLYWXO2B3V47QH66IEB6EZ3/mitrevendor-advisory
security.gentoo.org/glsa/202309-02mitrevendor-advisory
www.debian.org/security/2023/dsa-5429mitrevendor-advisory
lists.debian.org/debian-lts-announce/2023/04/msg00029.htmlmitremailing-list
gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1992.jsonmitre
gitlab.com/wireshark/wireshark/-/issues/18852mitre
www.wireshark.org/security/wnpa-sec-2023-09.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000