Vulnerabilities > Wireshark > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-30 | CVE-2017-13766 | Out-of-bounds Write vulnerability in Wireshark In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. | 7.5 |
| 2017-08-30 | CVE-2017-13765 | Out-of-bounds Read vulnerability in multiple products In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the IrCOMM dissector has a buffer over-read and application crash. | 7.5 |
| 2017-08-30 | CVE-2017-13764 | NULL Pointer Dereference vulnerability in Wireshark 2.4.0 In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. | 7.5 |
| 2017-07-18 | CVE-2017-11411 | Improper Input Validation vulnerability in Wireshark In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system memory. | 7.5 |
| 2017-07-18 | CVE-2017-11410 | Infinite Loop vulnerability in Wireshark In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. | 7.5 |
| 2017-07-18 | CVE-2017-11409 | Excessive Iteration vulnerability in multiple products In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. | 7.5 |
| 2017-07-18 | CVE-2017-11408 | Improper Input Validation vulnerability in Wireshark In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector could crash. | 7.5 |
| 2017-07-18 | CVE-2017-11407 | Improper Input Validation vulnerability in multiple products In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. | 7.5 |
| 2017-07-18 | CVE-2017-11406 | Infinite Loop vulnerability in multiple products In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite loop. | 7.5 |
| 2017-06-21 | CVE-2017-9766 | Uncontrolled Recursion vulnerability in multiple products In Wireshark 2.2.7, PROFINET IO data with a high recursion depth allows remote attackers to cause a denial of service (stack exhaustion) in the dissect_IODWriteReq function in plugins/profinet/packet-dcerpc-pn-io.c. | 7.5 |