34 matches found
CVE-2026-5404
Wireshark is affected by CVE-2026-5404 due to a buffer copy without size checking in the K12 RF5 file parser, impacting Wireshark versions 4.6.0–4.6.4 and 4.4.0–4.4.14 and causing a denial of service. The root cause is an unchecked input size during parsing. A fix appears in Wireshark 4.6.5 (per ...
CVE-2026-7375
UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...
RockyLinux 10 : wireshark (RLSA-2026:1714)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:1714 advisory. Wireshark: NULL Pointer Dereference in Wireshark CVE-2025-9817 Tenable has extracted the preceding description block directly from the RockyLinux security...
Linux Distros Unpatched Vulnerability : CVE-2025-11626
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service CVE-2025-11626 Note that Nessus relies on the presence of...
EUVD-2014-5061
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-0667
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is...
Linux Distros Unpatched Vulnerability : CVE-2015-2191
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the dissecttnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4...
Linux Distros Unpatched Vulnerability : CVE-2015-8724
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not...
Linux Distros Unpatched Vulnerability : CVE-2016-2530
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dissctrslipaccessmsg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 mishandles the...
Linux Distros Unpatched Vulnerability : CVE-2015-8711
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows...
Linux Distros Unpatched Vulnerability : CVE-2017-15191
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validatin...
Linux Distros Unpatched Vulnerability : CVE-2015-6248
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ptvcursoradd function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data i...
Linux Distros Unpatched Vulnerability : CVE-2016-9373
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was...
Linux Distros Unpatched Vulnerability : CVE-2016-7178
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/dissectors/packet-umtsfp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated for certain data structures, whi...
Linux Distros Unpatched Vulnerability : CVE-2014-5164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rlcdecodeli function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.10.x before 1.10.9 initializes a certain structure member only afte...
Linux Distros Unpatched Vulnerability : CVE-2017-9351
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by...
Linux Distros Unpatched Vulnerability : CVE-2018-6836
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The netmonreccommentdestroy function in wiretap/netmon.c in Wireshark through 2.4.4 performs a free operation on an uninitialized memory address, which allows...
Linux Distros Unpatched Vulnerability : CVE-2016-4084
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer signedness error in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 allows remote attackers to cause a denial of...
Linux Distros Unpatched Vulnerability : CVE-2015-8716
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The initt38infoconv function in epan/dissectors/packet-t38.c in the T.38 dissector in Wireshark 1.12.x before 1.12.9 does not ensure that a conversation exists,...
Linux Distros Unpatched Vulnerability : CVE-2014-2907
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The srtpaddaddress function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation...