Lucene search
K

200 matches found

NVD
NVD
added 2023/06/07 3:15 a.m.26 views

CVE-2023-0666

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.5CVSS7AI score0.02275EPSS
Exploits1References7
OSV
OSV
added 2023/06/07 3:15 a.m.3 views

DEBIAN-CVE-2023-0666

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.5CVSS7.4AI score0.02275EPSS
Exploits1References1
OSV
OSV
added 2023/06/07 3:15 a.m.24 views

CVE-2023-0666

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.5CVSS7.8AI score0.02275EPSS
Exploits1References7
Prion
Prion
added 2023/06/07 3:15 a.m.31 views

Heap overflow

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

4.3CVSS6.8AI score0.02275EPSS
Exploits1References6Affected Software2
UbuntuCve
UbuntuCve
added 2023/06/07 3:15 a.m.33 views

CVE-2023-0666

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

6.5CVSS7.3AI score0.02275EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/06/07 2:25 a.m.29 views

CVE-2023-0666 Wireshark RTPS Parsing Buffer Overflow

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

7.2AI score0.02275EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/06/07 2:25 a.m.11 views

CVE-2023-0666 Wireshark RTPS Parsing Buffer Overflow

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark...

7.4AI score0.02275EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2023/05/29 5:10 p.m.37 views

CVE-2023-0666

A flaw was found in the RTPS dissector of Wireshark. This issue occurs when decoding malformed packets from a pcap file or from the network, causing a buffer overflow, resulting in a denial of service...

6.5CVSS6.9AI score0.02275EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.30 views

Wireshark 4.0.x < 4.0.6 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 4.0.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.0.6 advisory. - XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet...

7.5CVSS7.2AI score0.02275EPSS
Exploits9References28
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.40 views

Wireshark 4.0.x < 4.0.6 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.0.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.0.6 advisory. - XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service vi...

7.5CVSS7.2AI score0.02275EPSS
Exploits9References28
SUSE CVE
SUSE CVE
added 2023/02/15 5:40 a.m.3 views

SUSE CVE-2013-1579

The rtpsutiladdbitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service infinite loop via a...

2.9CVSS7.4AI score0.00703EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.2 views

SUSE CVE-2013-5720

Buffer overflow in the RTPS dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service application crash via a crafted packet...

5CVSS7.5AI score0.0284EPSS
Exploits0References3
NVD
NVD
added 2023/02/03 9:15 p.m.22 views

CVE-2023-23932

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

7.5CVSS6AI score0.00738EPSS
Exploits0References2
Prion
Prion
added 2023/02/03 9:15 p.m.12 views

Input validation

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

5CVSS7.5AI score0.00738EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/03 8:8 p.m.7 views

CVE-2023-23932 Specially crafted RTPS message may cause an OpenDDS application to crash

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

5.3CVSS6.2AI score0.00738EPSS
Exploits0References2
CVE
CVE
added 2023/02/03 8:8 p.m.46 views

CVE-2023-23932

OpenDDS (C++ implementation of OMG DDS) is affected by CVE-2023-23932. The vulnerability involves processing of RTPS network input: untrusted, badly-formed input may cause OpenDDS applications to crash. Root cause details indicate the issue affected OpenDDS prior to version 3.23.1. Public referen...

7.5CVSS6.2AI score0.00738EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/02/03 8:8 p.m.20 views

CVE-2023-23932 Specially crafted RTPS message may cause an OpenDDS application to crash

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

5.3CVSS7.7AI score0.00738EPSS
Exploits0References2
OSV
OSV
added 2023/02/03 8:8 p.m.22 views

CVE-2023-23932 Specially crafted RTPS message may cause an OpenDDS application to crash

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

5.3CVSS7.4AI score0.00738EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/02/03 12:0 a.m.3 views

PT-2023-19305 · Opendds · Opendds

Name of the Vulnerable Software and Affected Versions: OpenDDS versions prior to 3.23.1 Description: The issue affects OpenDDS applications exposed to untrusted RTPS network traffic, which may cause them to crash when parsing badly-formed input. Recommendations: For versions prior to 3.23.1, upda...

7.5CVSS7.5AI score0.00738EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2023/01/18 12:0 a.m.28 views

KLA61753 Multiple vulnerabilities in Wireshark

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in EAP dissector can be exploited to cause denial of servic...

7.1CVSS7.6AI score0.00887EPSS
Exploits0References9
Rows per page
Query Builder