Lucene search
K

36 matches found

CVE
CVE
added last week16 views

CVE-2026-15163

CVE-2026-15163 affects Wireshark up to 4.6.6 and 4.4.16, where multiple protocol dissectors can enter infinite loops due to an unreachable exit condition, causing denial of service (application unresponsiveness). Severity varies by source: NVD lists CVSSv3.1 impact as High (AV:N/AC:L/PR:N/UI:N/S:...

7.5CVSS5.9AI score0.00187EPSS
Exploits0References5Affected Software1
CVE
CVE
added last week9 views

CVE-2026-15164

CVE-2026-15164 relates to Wireshark’s ciscodump component and is described as a heap-based buffer overflow that causes a crash, resulting in a DoS. Affected versions per the CVE entry include 4.6.0–4.6.6 and 4.4.0–4.4.16. The vulnerability is triggered by processing input under the specified comp...

5.5CVSS5.9AI score0.00097EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/07/05 10:23 p.m.8 views

CVE-2026-10656

The MAX32xxx USB device controller driver drivers/usb/udc/udcmax32.c, compatible adimax32usbhs dereferenced an endpoint buffer in its OUT and IN transfer-completion handlers without checking it for NULL. udceventxferoutdone called netbufaddbuf, eprequest-actlen immediately after buf =...

4.6CVSS6.1AI score0.00191EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/06/29 10:51 p.m.30 views

CVE-2026-10648 NULL-pointer dereference in MCUmgr serial/console SMP transport on buffer-pool exhaustion

mcumgrserialprocessfrag in subsys/mgmt/mcumgr/transport/src/serialutil.c calls netbufreset on the result of smppacketalloc before checking it for NULL. smppacketalloc uses netbufallocKNOWAIT against the shared MCUmgr packet pool CONFIGMCUMGRTRANSPORTNETBUFCOUNT, default 4, which returns NULL when...

6.2CVSS0.00109EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/06/29 10:51 p.m.11 views

CVE-2026-10648

mcumgrserialprocessfrag in subsys/mgmt/mcumgr/transport/src/serialutil.c calls netbufreset on the result of smppacketalloc before checking it for NULL. smppacketalloc uses netbufallocKNOWAIT against the shared MCUmgr packet pool CONFIGMCUMGRTRANSPORTNETBUFCOUNT, default 4, which returns NULL when...

6.2CVSS6AI score0.00109EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/04 9:31 a.m.15 views

GoBGP has an Integer Underflow Issue

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.8AI score0.00454EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/04 6:32 a.m.12 views

GoBGP has an Improper Resource Shutdown or Release

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS5.5AI score0.00464EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-7735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the compone...

7.5CVSS7.1AI score0.00361EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/01 2:11 a.m.7 views

SUSE CVE-2026-6535

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00141EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/05/01 2:10 a.m.5 views

SUSE CVE-2026-7375

UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00193EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/05/01 2:10 a.m.7 views

SUSE CVE-2026-7378

Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00193EPSS
Exploits1References3
OSV
OSV
added 2026/05/01 12:16 a.m.6 views

UBUNTU-CVE-2026-5656

Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution...

7.8CVSS6.4AI score0.0018EPSS
Exploits1References4
NVD
NVD
added 2026/04/30 6:16 a.m.6 views

CVE-2026-7375

UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS0.00193EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/04/30 5:38 a.m.8 views

CVE-2026-5657

iLBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS5.3AI score0.00206EPSS
Exploits1
Debian CVE
Debian CVE
added 2026/04/30 5:37 a.m.7 views

CVE-2026-6537

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.0018EPSS
Exploits1
CVE
CVE
added 2026/04/30 5:37 a.m.34 views

CVE-2026-6537

Wireshark CVE-2026-6537 affects the ZigBee protocol dissector in Wireshark 4.6.0–4.6.4 and 4.4.0–4.4.14. The vulnerability is a stack-based buffer overflow in the ZigBee dissector, causing denial of service. Exploitation status and concrete fix/version are not provided in the documents; a remedia...

5.5CVSS5.2AI score0.0018EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/30 5:34 a.m.5 views

CVE-2026-6521

OpenFlow v5 protocol dissector infinite loops in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00143EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/04/30 5:33 a.m.18 views

CVE-2026-6519

CVE-2026-6519 affects Wireshark’s MBIM protocol dissector, with an infinite loop causing denial of service. Public details across SUSE, Debian, Debian OSV, EUVD, Alpine, and CVE listings confirm the issue impacts Wireshark versions 4.6.0–4.6.4 and 4.4.0–4.4.14. The root cause is described as a lo...

7.5CVSS5.2AI score0.00171EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/30 5:4 a.m.3 views

CVE-2026-7375

UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00193EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/04/30 5:4 a.m.6 views

CVE-2026-7376

Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS5.8AI score0.00193EPSS
Exploits1References2
Rows per page
Query Builder