Vulnerabilities > CVE-2023-1161
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
LOW Availability impact
HIGH Summary
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file
Vulnerable Configurations
References
- https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1161.json
- https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1161.json
- https://gitlab.com/wireshark/wireshark/-/issues/18839
- https://gitlab.com/wireshark/wireshark/-/issues/18839
- https://lists.debian.org/debian-lts-announce/2023/04/msg00029.html
- https://lists.debian.org/debian-lts-announce/2023/04/msg00029.html
- https://security.gentoo.org/glsa/202309-02
- https://security.gentoo.org/glsa/202309-02
- https://www.debian.org/security/2023/dsa-5429
- https://www.debian.org/security/2023/dsa-5429
- https://www.wireshark.org/security/wnpa-sec-2023-08.html
- https://www.wireshark.org/security/wnpa-sec-2023-08.html