Vulnerabilities > Wireshark
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-03-15 | CVE-2021-22191 | Injection vulnerability in Wireshark Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file. | 6.8 |
2021-02-17 | CVE-2021-22174 | Resource Exhaustion vulnerability in multiple products Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file | 5.0 |
2021-02-17 | CVE-2021-22173 | Memory Leak vulnerability in multiple products Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file | 5.0 |
2020-12-21 | CVE-2020-26422 | Classic Buffer Overflow vulnerability in Wireshark 3.4.0/3.4.1 Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 allows denial of service via packet injection or crafted capture file | 5.0 |
2020-12-11 | CVE-2020-26421 | Out-Of-Bounds Read vulnerability in multiple products Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file. | 5.0 |
2020-12-11 | CVE-2020-26420 | Memory Leak vulnerability in multiple products Memory leak in RTPS protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file. | 5.0 |
2020-12-11 | CVE-2020-26419 | Memory Leak vulnerability in multiple products Memory leak in the dissection engine in Wireshark 3.4.0 allows denial of service via packet injection or crafted capture file. | 5.0 |
2020-12-11 | CVE-2020-26418 | Memory Leak vulnerability in multiple products Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file. | 5.0 |
2020-11-02 | CVE-2020-28030 | Resource Exhaustion vulnerability in multiple products In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. | 5.0 |
2020-10-06 | CVE-2020-26575 | Infinite Loop vulnerability in multiple products In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. | 5.0 |