Vulnerabilities > Wireshark

DATE CVE VULNERABILITY TITLE RISK
2024-01-03 CVE-2024-0207 Out-of-bounds Read vulnerability in Wireshark 4.2.0
HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-125
7.5
2024-01-03 CVE-2024-0208 Uncontrolled Recursion vulnerability in Wireshark
GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-674
7.5
2024-01-03 CVE-2024-0209 NULL Pointer Dereference vulnerability in Wireshark
IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-476
7.5
2024-01-03 CVE-2024-0210 Uncontrolled Recursion vulnerability in Wireshark 4.2.0
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-674
7.5
2024-01-03 CVE-2024-0211 Uncontrolled Recursion vulnerability in Wireshark 4.2.0
DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-674
7.5
2023-11-16 CVE-2023-6174 Injection vulnerability in multiple products
SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark debian CWE-74
6.5
2023-10-04 CVE-2023-5371 Allocation of Resources Without Limits or Throttling vulnerability in Wireshark
RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-770
6.5
2023-08-25 CVE-2023-2906 Divide By Zero vulnerability in Wireshark
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack.
network
low complexity
wireshark CWE-369
6.5
2023-08-24 CVE-2023-4511 Infinite Loop vulnerability in Wireshark
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-835
7.5
2023-08-24 CVE-2023-4512 Uncontrolled Recursion vulnerability in Wireshark
CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-674
7.5