Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-12295

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the numb...

7.5CVSS7.2AI score0.03765EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.42 views

K06725231: Wireshark vulnerability CVE-2019-12295

Security Advisory Description In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion. CVE-2019-12295 Impact An attacker can leverage this issue...

7.5CVSS7.4AI score0.03765EPSS
Exploits0Affected Software13
OSV
OSV
added 2021/07/31 11:3 a.m.4 views

OESA-2021-1285 wireshark security update

Wireshark is an open source tool for profiling network traffic and analyzing packets. Such a tool is often referred to as a network analyzer, network protocol analyzer or sniffer. Security Fixes: In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash...

7.5CVSS6.8AI score0.03765EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/11/02 12:0 a.m.39 views

Debian DLA-2423-1 : wireshark security update

Several vulnerabilities were fixed in the Wireshark network protocol analyzer. CVE-2019-10894 GSS-API dissector crash CVE-2019-10895 NetScaler file parser crash CVE-2019-10896 DOF dissector crash CVE-2019-10899 SRVLOC dissector crash CVE-2019-10901 LDSS dissector crash CVE-2019-10903 DCERPC SPOOL...

7.5CVSS6.8AI score0.05803EPSS
Exploits6References10
RedhatCVE
RedhatCVE
added 2020/05/05 1:39 p.m.29 views

CVE-2019-12295

In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion...

7.5CVSS2.6AI score0.03765EPSS
Exploits0References4
Cvelist
Cvelist
added 2019/05/23 11:56 a.m.27 views

CVE-2019-12295

In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion...

7.3AI score0.03765EPSS
Exploits0References8
CVE
CVE
added 2019/05/23 11:56 a.m.199 views

CVE-2019-12295

CVE-2019-12295 affects the Wireshark dissection engine across multiple branches (Wireshark 3.0.x up to 3.0.1, 2.6.x up to 2.6.8, and 2.4.x up to 2.4.14). The vulnerability causes the dissector to crash due to excessive recursion when processing layered protocol structures. Root cause: unbounded r...

7.5CVSS7.2AI score0.03765EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/23 12:0 a.m.29 views

Wireshark 2.4.x < 2.4.15 A Vulnerability (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.15. It is, therefore, affected by a vulnerability as referenced in the wireshark-2.4.15 advisory. - In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was...

7.5CVSS7.2AI score0.03765EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/05/23 12:0 a.m.37 views

Wireshark 2.4.x < 2.4.15 A Vulnerability

The version of Wireshark installed on the remote Windows host is prior to 2.4.15. It is, therefore, affected by a vulnerability as referenced in the wireshark-2.4.15 advisory. - In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed...

7.5CVSS7.2AI score0.03765EPSS
Exploits0References4
Rows per page
Query Builder