Show filters
675 Total Results
Displaying 1-10 of 675
Sort by:
Attacker Value
Very Low

CVE-2020-15466

Disclosure Date: July 05, 2020 (last updated February 21, 2025)
In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
1
1
Attacker Value
Unknown

CVE-2025-1492

Disclosure Date: February 20, 2025 (last updated February 20, 2025)
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file
0
0
Attacker Value
Unknown

CVE-2024-11596

Disclosure Date: November 21, 2024 (last updated January 05, 2025)
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
0
0
Attacker Value
Unknown

CVE-2024-11595

Disclosure Date: November 21, 2024 (last updated January 05, 2025)
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
0
0
Attacker Value
Unknown

CVE-2024-9781

Disclosure Date: October 10, 2024 (last updated January 05, 2025)
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-9780

Disclosure Date: October 10, 2024 (last updated October 18, 2024)
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-8645

Disclosure Date: September 10, 2024 (last updated September 10, 2024)
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file
0
0
Attacker Value
Unknown

CVE-2024-8250

Disclosure Date: August 29, 2024 (last updated August 31, 2024)
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-4855

Disclosure Date: May 14, 2024 (last updated May 15, 2024)
Use after free issue in editcap could cause denial of service via crafted capture file
0
0
Attacker Value
Unknown

CVE-2024-4854

Disclosure Date: May 14, 2024 (last updated May 15, 2024)
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file
0
0
View More Topics  Next >