CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2CVE-2023-2906 – Wireshark CP2179 divide by zero
https://notcve.org/view.php?id=CVE-2023-2906
25 Aug 2023 — Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack. Debido a un error al validar la longitud proporcionada por un paquete CP2179 creado por un atacante, las versiones de Wireshark 2.0.0 a 4.0.7 son susceptibles a una división por cero, lo que permite un ataque de denegación de servicio. • https://gitlab.com/wireshark/wireshark/-/issues/19229 • CWE-369: Divide By Zero •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2022-4344
https://notcve.org/view.php?id=CVE-2022-4344
11 Jan 2023 — Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file El agotamiento de la memoria en el disector del protocolo Kafka en Wireshark 4.0.0 a 4.0.1 y 3.6.0 a 3.6.9 permite la denegación de servicio mediante inyección de paquetes o archivo de captura manipulado • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4344.json • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.3EPSS: 0%CPEs: 4EXPL: 2CVE-2022-3190 – wireshark: f5ethtrailer Infinite loop in legacy style dissector
https://notcve.org/view.php?id=CVE-2022-3190
13 Sep 2022 — Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file Un bucle infinito en el disector del protocolo F5 Ethernet Trailer en Wireshark versiones 3.6.0 a 3.6.7 y 3.4.0 a 3.4.15, permite la denegación de servicio por medio de la inyección de paquetes o un archivo de captura diseñado A vulnerability was found in Wireshark. This issue occurs due to an Infinite loop in the F5 Ethernet Traile... • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3190.json • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2022-0585 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2022-0585
18 Feb 2022 — Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file Grandes bucles en múltiples disectores de protocolo en Wireshark versiones 3.6.0 a 3.6.1 y 3.4.0 a 3.4.11, permiten una denegación de servicio por medio de inyección de paquetes o archivo de captura diseñado Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Versions less than 3.6.8 are ... • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0585.json • CWE-834: Excessive Iteration •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 1CVE-2022-0581 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2022-0581
14 Feb 2022 — Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file Un bloqueo en el disector de protocolos CMS en Wireshark versiones 3.6.0 a 3.6.1 y versiones 3.4.0 a 3.4.11, permite una denegación de servicio por medio de una inyección de paquetes o un archivo de captura diseñado Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Versions less than 3.6.8 are... • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0581.json • CWE-416: Use After Free •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 1CVE-2022-0582 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2022-0582
14 Feb 2022 — Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file Un acceso no alineado en el disector del protocolo CSN.1 en Wireshark versiones 3.6.0 a 3.6.1 y versiones 3.4.0 a 3.4.11, permite una denegación de servicio por medio de una inyección de paquetes o un archivo de captura diseñado Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Ve... • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0582.json • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 1CVE-2022-0583 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2022-0583
14 Feb 2022 — Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file Un bloqueo en el disector del protocolo PVFS en Wireshark versiones 3.6.0 a 3.6.1 y versiones 3.4.0 a 3.4.11, permite una denegación de servicio por medio de una inyección de paquetes o de un archivo de captura diseñado Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Versions less than 3.6.... • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0583.json • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2022-0586 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2022-0586
14 Feb 2022 — Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file Un bucle infinito en el disector de protocolo RTMPT en Wireshark versiones 3.6.0 a 3.6.1 y versiones 3.4.0 a 3.4.11, permite una denegación de servicio por medio de una inyección de paquetes o de un archivo de captura diseñado Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Versions le... • https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0586.json • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 1CVE-2021-4181 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2021-4181
30 Dec 2021 — Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file Un bloqueo en Sysdig Event dissector en Wireshark versiones 3.6.0 y 3.4.0 a 3.4.10, permite la denegación de servicio por inyección de paquetes o por un archivo de captura diseñado. Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Versions less than 3.6.8 are affected. • https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-4181.json • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 1CVE-2021-4184 – Gentoo Linux Security Advisory 202210-04
https://notcve.org/view.php?id=CVE-2021-4184
30 Dec 2021 — Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file Un bucle infinito en BitTorrent DHT dissector en Wireshark versiones 3.6.0 y 3.4.0 a 3.4.10, permite una denegación de servicio por medio de una inyección de paquetes o de un archivo de captura diseñado. Multiple vulnerabilities have been discovered in Wireshark, the worst of which could result in denial of service. Versions less than 3.6.8 are affected. • https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-4184.json • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •