VYPR

Vendor CVEs

Wireshark

All CVEs

736 total · sorted by risk
  • CVE-2023-2906Aug 25, 2023
    risk 0.00cvss epss 0.03

    Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack.

  • CVE-2023-4513Aug 24, 2023
    risk 0.00cvss epss 0.00

    BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file

  • CVE-2023-4512Aug 24, 2023
    risk 0.00cvss epss 0.00

    CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file

  • CVE-2023-4511Aug 24, 2023
    risk 0.00cvss epss 0.00

    BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file

  • CVE-2023-3649Jul 14, 2023
    risk 0.00cvss epss 0.00

    iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file

  • CVE-2023-3648Jul 14, 2023
    risk 0.00cvss epss 0.00

    Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file

  • CVE-2023-0667Jun 7, 2023
    risk 0.00cvss epss 0.02

    Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark

  • CVE-2023-0668Jun 7, 2023
    risk 0.00cvss epss 0.02

    Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.

  • CVE-2023-0666Jun 7, 2023
    risk 0.00cvss epss 0.02

    Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.

  • CVE-2023-2952May 30, 2023
    risk 0.00cvss epss 0.01

    XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file

  • CVE-2023-2854May 26, 2023
    risk 0.00cvss epss 0.01

    BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

  • CVE-2023-2879May 26, 2023
    risk 0.00cvss epss 0.02

    GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file

  • CVE-2023-2856May 26, 2023
    risk 0.00cvss epss 0.02

    VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

  • CVE-2023-2858May 26, 2023
    risk 0.00cvss epss 0.02

    NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

  • CVE-2023-2857May 26, 2023
    risk 0.00cvss epss 0.01

    BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

  • CVE-2023-2855May 26, 2023
    risk 0.00cvss epss 0.02

    Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

  • CVE-2023-1994Apr 12, 2023
    risk 0.00cvss epss 0.01

    GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

  • CVE-2023-1993Apr 12, 2023
    risk 0.00cvss epss 0.04

    LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

  • CVE-2023-1992Apr 12, 2023
    risk 0.00cvss epss 0.05

    RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

  • CVE-2023-1161Mar 6, 2023
    risk 0.00cvss epss 0.01

    ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

  • CVE-2023-0417Jan 24, 2023
    risk 0.00cvss epss 0.01

    Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

  • CVE-2023-0415Jan 24, 2023
    risk 0.00cvss epss 0.01

    iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

  • CVE-2023-0412Jan 24, 2023
    risk 0.00cvss epss 0.01

    TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

  • CVE-2023-0416Jan 24, 2023
    risk 0.00cvss epss 0.01

    GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

  • CVE-2023-0413Jan 24, 2023
    risk 0.00cvss epss 0.01

    Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

  • CVE-2023-0411Jan 24, 2023
    risk 0.00cvss epss 0.01

    Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

  • CVE-2023-0414Jan 24, 2023
    risk 0.00cvss epss 0.01

    Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file

  • CVE-2022-4345Jan 12, 2023
    risk 0.00cvss epss 0.01

    Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

  • CVE-2022-4344Jan 11, 2023
    risk 0.00cvss epss 0.01

    Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

  • CVE-2022-3724Dec 9, 2022
    risk 0.00cvss epss 0.02

    Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file on Windows

  • CVE-2022-3725Oct 27, 2022
    risk 0.00cvss epss 0.01

    Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file

  • CVE-2022-3190Sep 13, 2022
    risk 0.00cvss epss 0.02

    Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

  • CVE-2022-0585Feb 18, 2022
    risk 0.00cvss epss 0.02

    Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file

  • CVE-2022-0586Feb 14, 2022
    risk 0.00cvss epss 0.02

    Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

  • CVE-2022-0582Feb 14, 2022
    risk 0.00cvss epss 0.02

    Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

  • CVE-2022-0581Feb 14, 2022
    risk 0.00cvss epss 0.02

    Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

  • CVE-2022-0583Feb 14, 2022
    risk 0.00cvss epss 0.02

    Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

  • CVE-2021-4183Dec 30, 2021
    risk 0.00cvss epss 0.01

    Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file

  • CVE-2021-4181Dec 30, 2021
    risk 0.00cvss epss 0.04

    Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

  • CVE-2021-4186Dec 30, 2021
    risk 0.00cvss epss 0.02

    Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

  • CVE-2021-4185Dec 30, 2021
    risk 0.00cvss epss 0.04

    Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

  • CVE-2021-4182Dec 30, 2021
    risk 0.00cvss epss 0.03

    Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

  • CVE-2021-4190Dec 30, 2021
    risk 0.00cvss epss 0.03

    Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file

  • CVE-2021-4184Dec 30, 2021
    risk 0.00cvss epss 0.04

    Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

  • CVE-2021-39923Nov 19, 2021
    risk 0.00cvss epss 0.02

    Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

  • CVE-2021-39924Nov 19, 2021
    risk 0.00cvss epss 0.05

    Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

  • CVE-2021-39925Nov 19, 2021
    risk 0.00cvss epss 0.08

    Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

  • CVE-2021-39921Nov 19, 2021
    risk 0.00cvss epss 0.03

    NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

  • CVE-2021-39926Nov 19, 2021
    risk 0.00cvss epss 0.07

    Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

  • CVE-2021-39929Nov 19, 2021
    risk 0.00cvss epss 0.04

    Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Page 8 of 15