828 matches found
CVE-2021-4183
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file...
CVE-2021-4183
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file...
CVE-2021-4183
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file...
Design/Logic Flaw
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file...
CVE-2021-4183
Wireshark: CVE-2021-4183 is a denial-of-service issue caused by a crash in the pcapng file parser in Wireshark 3.6.0. Public documentation in connected advisories (Gentoo GLSA 202210-04, openSUSE/openSUSE-SU-2022:0375-1, SUSE/SLES updates, etc.) confirms the vulnerability condition is the pcapng ...
CVE-2021-4183
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file...
Wireshark 3.4.x < 3.4.11 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 3.4.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.4.11 advisory. - Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or...
KLA12409 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in RTMPT dissector can be exploited via special crafted packet to cause denial of service...
Wireshark 3.6.x < 3.6.1 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.6.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.1 advisory. - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or...
Wireshark 3.4.x < 3.4.11 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.4.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.4.11 advisory. - Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet...
OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071)
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u311, 8u301; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated attacker wi...
OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071)
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u311, 8u301; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated attacker wi...
Huawei EulerOS: Security Advisory for wireshark (EulerOS-SA-2021-2438)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : wireshark (EulerOS-SA-2021-2438)
According to the versions of the wireshark packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Wireshark is a network traffic analyzer for Unix-ish operating systems.This package lays base for libpcap, a packet capture and filtering...
Design/Logic Flaw
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution...
CVE-2021-22205
Removed by vendor...
CVE-2021-22205
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution. Recent assessments: jbaines-r7 at November 01, 2021 2:33pm UTC reported:...
AZL-44679 CVE-2020-7788 affecting package js-jquery 3.5.0-4
This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context...
Denial Of Service (DoS)
wireshark is vulnerable to denial of service DoS. The vulnerability exists as the NetScaler file parser could crash through poor data validation in wiretap/netscaler.c...
Accusoft ImageGear Buffer Overflow Vulnerability (CNVD-2020-27758)
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A buffer error vulnerability exists in the igcore19d.dll ICO icoread parser in Accusoft ImageGear version 19.5.0. An attacker can exploit this vulnerability to execute code with the help of specially...