Wireshark
by Wireshark
Source repositories
CVEs (736)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-0962 | 0.00 | — | 0.00 | Jan 14, 2026 | SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service | |||
| CVE-2026-0960 | 0.00 | — | 0.00 | Jan 14, 2026 | HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service | |||
| CVE-2026-0959 | 0.00 | — | 0.00 | Jan 14, 2026 | IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service | |||
| CVE-2025-13946 | 0.00 | — | 0.00 | Dec 3, 2025 | MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service | |||
| CVE-2025-13945 | 0.00 | — | 0.00 | Dec 3, 2025 | HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service | |||
| CVE-2025-13674 | 0.00 | — | 0.00 | Nov 26, 2025 | BPv7 dissector crash in Wireshark 4.6.0 allows denial of service | |||
| CVE-2025-13499 | 0.00 | — | 0.00 | Nov 21, 2025 | Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service | |||
| CVE-2025-11626 | 0.00 | — | 0.00 | Oct 10, 2025 | MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service | |||
| CVE-2025-9817 | 0.00 | — | 0.00 | Sep 3, 2025 | SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service | |||
| CVE-2025-5601 | 0.00 | — | 0.00 | Jun 4, 2025 | Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file | |||
| CVE-2025-1492 | 0.00 | — | 0.00 | Feb 20, 2025 | Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-11596 | 0.00 | — | 0.00 | Nov 21, 2024 | ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-11595 | 0.00 | — | 0.00 | Nov 21, 2024 | FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-9781 | 0.00 | — | 0.00 | Oct 10, 2024 | AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-9780 | 0.00 | — | 0.00 | Oct 10, 2024 | ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-8645 | 0.00 | — | 0.00 | Sep 10, 2024 | SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-8250 | 0.00 | — | 0.00 | Aug 28, 2024 | NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file | |||
| CVE-2024-4854 | 0.00 | — | 0.01 | May 14, 2024 | MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file | |||
| CVE-2024-2955 | 0.00 | — | 0.01 | Mar 26, 2024 | T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-6175 | 0.00 | — | 0.03 | Mar 26, 2024 | NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file |
- CVE-2026-0962Jan 14, 2026risk 0.00cvss —epss 0.00
SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
- CVE-2026-0960Jan 14, 2026risk 0.00cvss —epss 0.00
HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service
- CVE-2026-0959Jan 14, 2026risk 0.00cvss —epss 0.00
IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
- CVE-2025-13946Dec 3, 2025risk 0.00cvss —epss 0.00
MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service
- CVE-2025-13945Dec 3, 2025risk 0.00cvss —epss 0.00
HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service
- CVE-2025-13674Nov 26, 2025risk 0.00cvss —epss 0.00
BPv7 dissector crash in Wireshark 4.6.0 allows denial of service
- CVE-2025-13499Nov 21, 2025risk 0.00cvss —epss 0.00
Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service
- CVE-2025-11626Oct 10, 2025risk 0.00cvss —epss 0.00
MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service
- CVE-2025-9817Sep 3, 2025risk 0.00cvss —epss 0.00
SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service
- CVE-2025-5601Jun 4, 2025risk 0.00cvss —epss 0.00
Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file
- CVE-2025-1492Feb 20, 2025risk 0.00cvss —epss 0.00
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file
- CVE-2024-11596Nov 21, 2024risk 0.00cvss —epss 0.00
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
- CVE-2024-11595Nov 21, 2024risk 0.00cvss —epss 0.00
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
- CVE-2024-9781Oct 10, 2024risk 0.00cvss —epss 0.00
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file
- CVE-2024-9780Oct 10, 2024risk 0.00cvss —epss 0.00
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file
- CVE-2024-8645Sep 10, 2024risk 0.00cvss —epss 0.00
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file
- CVE-2024-8250Aug 28, 2024risk 0.00cvss —epss 0.00
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file
- CVE-2024-4854May 14, 2024risk 0.00cvss —epss 0.01
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file
- CVE-2024-2955Mar 26, 2024risk 0.00cvss —epss 0.01
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file
- CVE-2023-6175Mar 26, 2024risk 0.00cvss —epss 0.03
NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file
Page 17 of 37