Vulnerabilities > Wireshark > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-12-30 | CVE-2017-17997 | NULL Pointer Dereference vulnerability in multiple products In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. | 7.5 |
2017-12-27 | CVE-2017-17935 | Out-of-bounds Read vulnerability in multiple products The File_read_line function in epan/wslua/wslua_file.c in Wireshark through 2.2.11 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet that triggers the attempted processing of an empty line. | 7.5 |
2017-12-01 | CVE-2017-17085 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. | 7.5 |
2017-12-01 | CVE-2017-17084 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. | 7.5 |
2017-12-01 | CVE-2017-17083 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. | 7.5 |
2017-10-10 | CVE-2017-15193 | Resource Exhaustion vulnerability in Wireshark In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. | 7.5 |
2017-10-10 | CVE-2017-15192 | Unspecified vulnerability in Wireshark In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. | 7.5 |
2017-10-10 | CVE-2017-15191 | Use of Externally-Controlled Format String vulnerability in multiple products In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. | 7.5 |
2017-10-10 | CVE-2017-15190 | Unspecified vulnerability in Wireshark 2.4.0/2.4.1 In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. | 7.5 |
2017-10-10 | CVE-2017-15189 | Missing Release of Resource after Effective Lifetime vulnerability in Wireshark 2.4.0/2.4.1 In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. | 7.5 |