Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11293
HistoryJul 18, 2018 - 12:00 a.m.

KLA11293 Multiple vulnerabilities in Wireshark

2018-07-1800:00:00
Kaspersky Lab
threats.kaspersky.com
175

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.007 Low

EPSS

Percentile

79.6%

JSON

Detect date:

07/18/2018

Severity:

High

Description:

Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Affected products:

Wireshark 2.6.x earlier than 2.6.2
Wireshark 2.4.x earlier than 2.4.8
Wireshark 2.2.x earlier than 2.2.16

Solution:

Update to the latest version
Get Wireshark

Original advisories:

wnpa-sec-2018-41
wnpa-sec-2018-35
wnpa-sec-2018-43
wnpa-sec-2018-37
wnpa-sec-2018-38
wnpa-sec-2018-39
wnpa-sec-2018-34
wnpa-sec-2018-40
wnpa-sec-2018-36
wnpa-sec-2018-42

Impacts:

DoS

Related products:

Wireshark

CVE-IDS:

CVE-2018-143427.8Critical
CVE-2018-143445.0Warning
CVE-2018-143405.0Warning
CVE-2018-143435.0Warning
CVE-2018-143395.0Warning
CVE-2018-143417.8Critical
CVE-2018-143687.8Critical
CVE-2018-143695.0Warning
CVE-2018-143675.0Warning
CVE-2018-143705.0Warning

References

Related

nessus 23
openvas 20
suse 3
altlinux 1
fedora 5
debian 1
osv 11
mageia 1
oraclelinux 1
centos 1
amazon 1
redhat 1
prion 10
ubuntucve 10
alpinelinux 10
redhatcve 10
debiancve 10
cve 10
veracode 3
nessus
nessus
Fedora 27 : 1:wireshark (2018-9ef52861b5)
2018-08-02 00:00:00
openSUSE Security Update : wireshark (openSUSE-2019-557)
2019-03-27 00:00:00
Fedora 28 : 1:wireshark (2018-d56c428f9e)
2019-01-03 00:00:00
openvas
openvas
openSUSE: Security Advisory for wireshark (openSUSE-SU-2018:2184-1)
2018-10-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2301-1)
2021-06-09 00:00:00
Wireshark Security Updates (wnpa-sec-2018-34_wnpa-sec-2018-41) - Mac OS X
2018-07-20 00:00:00
suse
suse
Security update for wireshark (moderate)
2018-08-03 21:15:11
Security update for wireshark (moderate)
2018-08-03 21:19:53
Security update for wireshark (moderate)
2020-03-19 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package wireshark version 2.6.2-alt1
2018-07-21 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: wireshark-2.6.2-1.fc28
2018-07-30 18:27:53
[SECURITY] Fedora 28 Update: wireshark-2.6.4-1.fc28
2018-11-28 02:46:18
[SECURITY] Fedora 28 Update: wireshark-2.6.5-1.fc28
2018-12-19 01:51:31
debian
debian
[SECURITY] [DLA 1451-1] wireshark security update
2018-07-29 13:55:33
osv
osv
wireshark - security update
2018-07-29 00:00:00
CVE-2018-14341
2018-07-19 02:29:00
CVE-2018-14369
2018-07-19 02:29:00
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2018-07-24 01:27:34
oraclelinux
oraclelinux
wireshark security and bug fix update
2020-04-06 00:00:00
centos
centos
wireshark security update
2020-04-08 20:08:49
amazon
amazon
Medium: wireshark
2020-06-16 18:06:00
redhat
redhat
(RHSA-2020:1047) Moderate: wireshark security and bug fix update
2020-03-31 09:12:21
prion
prion
Design/Logic Flaw
2018-07-19 02:29:00
Code injection
2018-07-19 02:29:00
Design/Logic Flaw
2018-07-19 02:29:00
ubuntucve
ubuntucve
CVE-2018-14369
2018-07-19 00:00:00
CVE-2018-14368
2018-07-19 00:00:00
CVE-2018-14370
2018-07-19 00:00:00
alpinelinux
alpinelinux
CVE-2018-14369
2018-07-19 02:29:00
CVE-2018-14367
2018-07-19 02:29:00
CVE-2018-14368
2018-07-19 02:29:00
redhatcve
redhatcve
CVE-2018-14369
2018-07-23 10:22:21
CVE-2018-14368
2018-07-23 10:22:48
CVE-2018-14339
2018-07-23 10:19:20
debiancve
debiancve
CVE-2018-14369
2018-07-19 02:29:00
CVE-2018-14367
2018-07-19 02:29:00
CVE-2018-14368
2018-07-19 02:29:00
cve
cve
CVE-2018-14369
2018-07-19 02:29:00
CVE-2018-14339
2018-07-19 02:29:00
CVE-2018-14368
2018-07-19 02:29:00
veracode
veracode
Denial Of Service (DoS)
2020-04-01 00:38:20
Denial Of Service (DoS)
2020-04-01 00:38:20
Denial Of Service (DoS)
2020-04-01 00:38:19

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.007 Low

EPSS

Percentile

79.6%

JSON
Related for KLA11293
nessus23openvas20suse3altlinux1fedora5debian1osv11mageia1oraclelinux1centos1amazon1redhat1prion10ubuntucve10alpinelinux10redhatcve10debiancve10cve10veracode3