Wireshark
by Wireshark
Source repositories
CVEs (736)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-2854 | 0.00 | — | 0.01 | May 26, 2023 | BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file | |||
| CVE-2023-2879 | 0.00 | — | 0.02 | May 26, 2023 | GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-2856 | 0.00 | — | 0.02 | May 26, 2023 | VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file | |||
| CVE-2023-2858 | 0.00 | — | 0.02 | May 26, 2023 | NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file | |||
| CVE-2023-2857 | 0.00 | — | 0.01 | May 26, 2023 | BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file | |||
| CVE-2023-2855 | 0.00 | — | 0.02 | May 26, 2023 | Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file | |||
| CVE-2023-1994 | 0.00 | — | 0.01 | Apr 12, 2023 | GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-1993 | 0.00 | — | 0.04 | Apr 12, 2023 | LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-1992 | 0.00 | — | 0.05 | Apr 12, 2023 | RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-1161 | 0.00 | — | 0.01 | Mar 6, 2023 | ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0417 | 0.00 | — | 0.01 | Jan 24, 2023 | Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0415 | 0.00 | — | 0.01 | Jan 24, 2023 | iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0412 | 0.00 | — | 0.01 | Jan 24, 2023 | TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0416 | 0.00 | — | 0.01 | Jan 24, 2023 | GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0413 | 0.00 | — | 0.01 | Jan 24, 2023 | Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0411 | 0.00 | — | 0.01 | Jan 24, 2023 | Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file | |||
| CVE-2023-0414 | 0.00 | — | 0.01 | Jan 24, 2023 | Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file | |||
| CVE-2022-4345 | 0.00 | — | 0.01 | Jan 12, 2023 | Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file | |||
| CVE-2022-4344 | 0.00 | — | 0.01 | Jan 11, 2023 | Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file | |||
| CVE-2022-3724 | 0.00 | — | 0.02 | Dec 9, 2022 | Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file on Windows |
- CVE-2023-2854May 26, 2023risk 0.00cvss —epss 0.01
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
- CVE-2023-2879May 26, 2023risk 0.00cvss —epss 0.02
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file
- CVE-2023-2856May 26, 2023risk 0.00cvss —epss 0.02
VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
- CVE-2023-2858May 26, 2023risk 0.00cvss —epss 0.02
NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
- CVE-2023-2857May 26, 2023risk 0.00cvss —epss 0.01
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
- CVE-2023-2855May 26, 2023risk 0.00cvss —epss 0.02
Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
- CVE-2023-1994Apr 12, 2023risk 0.00cvss —epss 0.01
GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
- CVE-2023-1993Apr 12, 2023risk 0.00cvss —epss 0.04
LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
- CVE-2023-1992Apr 12, 2023risk 0.00cvss —epss 0.05
RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
- CVE-2023-1161Mar 6, 2023risk 0.00cvss —epss 0.01
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file
- CVE-2023-0417Jan 24, 2023risk 0.00cvss —epss 0.01
Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
- CVE-2023-0415Jan 24, 2023risk 0.00cvss —epss 0.01
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
- CVE-2023-0412Jan 24, 2023risk 0.00cvss —epss 0.01
TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
- CVE-2023-0416Jan 24, 2023risk 0.00cvss —epss 0.01
GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
- CVE-2023-0413Jan 24, 2023risk 0.00cvss —epss 0.01
Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
- CVE-2023-0411Jan 24, 2023risk 0.00cvss —epss 0.01
Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
- CVE-2023-0414Jan 24, 2023risk 0.00cvss —epss 0.01
Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file
- CVE-2022-4345Jan 12, 2023risk 0.00cvss —epss 0.01
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file
- CVE-2022-4344Jan 11, 2023risk 0.00cvss —epss 0.01
Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file
- CVE-2022-3724Dec 9, 2022risk 0.00cvss —epss 0.02
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file on Windows
Page 19 of 37