Lucene search
+L

9 matches found

OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.27 views

openSUSE: Security Advisory for wireshark (SUSE-SU-2023:3252-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.02256EPSS
Exploits8References2
CBLMariner
CBLMariner
added 2023/09/28 11:57 a.m.17 views

CVE-2023-0667 affecting package wireshark for versions less than 4.0.8-1

CVE-2023-0667 affecting package wireshark for versions less than 4.0.8-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.8AI score0.02008EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/09/17 12:0 a.m.37 views

GLSA-202309-02 : Wireshark: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202309-02 Wireshark: Multiple Vulnerabilities - Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file CVE-2022-3725 - Due to failure in validating th...

7.5CVSS7.9AI score0.0462EPSS
Exploits14References20
OSV
OSV
added 2023/08/09 7:33 a.m.9 views

SUSE-SU-2023:3252-1 Security update for wireshark

This update for wireshark fixes the following issues: Update to Wireshark 3.6.15: - Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.15.html Security fixes: - CVE-2023-0667: Fixed failure to validate MS-MMS packet length...

7.5CVSS6.3AI score0.02256EPSS
Exploits8References19
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.32 views

Amazon Linux AMI : wireshark (ALAS-2023-1785)

The version of wireshark installed on the remote host is prior to 1.8.10-25.24. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1785 advisory. Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in a...

6.5CVSS8.4AI score0.02008EPSS
Exploits1References4
Amazon
Amazon
added 2023/07/19 12:0 a.m.32 views

Low: wireshark

Issue Overview: Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.5CVSS7.5AI score0.02008EPSS
Exploits1
Amazon
Amazon
added 2023/07/19 12:0 a.m.28 views

Low: wireshark

Issue Overview: Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.5CVSS7.5AI score0.02008EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/06/07 2:38 a.m.10 views

CVE-2023-0667 Wireshark MSMMS parsing buffer overflow

Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.9AI score0.02008EPSS
Exploits1References3
CVE
CVE
added 2023/06/07 2:38 a.m.300 views

CVE-2023-0667

CVE-2023-0667 affects Wireshark MSMMS parsing in 4.0.5 and earlier. The vulnerability arises from failing to validate the MSMMS packet length, causing a heap-based buffer overflow and potential code execution in the Wireshark process. A fix is available; advisories indicate upgrading to Wireshark...

6.5CVSS6.9AI score0.02008EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder