Vulnerabilities > Wireshark > High

DATE CVE VULNERABILITY TITLE RISK
2025-02-20 CVE-2025-1492 Uncontrolled Recursion vulnerability in Wireshark
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-674
7.5
7.5
2024-10-10 CVE-2024-9781 Unspecified vulnerability in Wireshark 4.2.0/4.4.0
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark
7.5
7.5
2024-05-14 CVE-2024-4854 Infinite Loop vulnerability in multiple products
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file
network
low complexity
fedoraproject wireshark CWE-835
7.5
7.5
2024-03-26 CVE-2023-6175 Classic Buffer Overflow vulnerability in Wireshark
NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file
local
low complexity
wireshark CWE-120
7.8
7.8
2024-01-03 CVE-2024-0207 Out-of-bounds Read vulnerability in Wireshark 4.2.0
HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-125
7.5
7.5
2024-01-03 CVE-2024-0208 Unspecified vulnerability in Wireshark
GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark
7.5
7.5
2024-01-03 CVE-2024-0209 NULL Pointer Dereference vulnerability in Wireshark
IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-476
7.5
7.5
2024-01-03 CVE-2024-0210 Uncontrolled Recursion vulnerability in Wireshark 4.2.0
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-674
7.5
7.5
2024-01-03 CVE-2024-0211 Infinite Loop vulnerability in Wireshark 4.2.0
DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-835
7.5
7.5
2023-08-24 CVE-2023-4511 Infinite Loop vulnerability in Wireshark
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark CWE-835
7.5
7.5