Lucene search
K

200 matches found

Mageia
Mageia
added 2024/02/20 6:28 a.m.60 views

Updated wireshark packages fix security vulnerabilities

The updated packages fix security vulnerabilities: RTPS dissector memory leak. CVE-2023-5371 SSH dissector invalid read of memory blocks. CVE-2023-6174 NetScreen File Parsing Heap-based Buffer Overflow. CVE-2023-6175 GVCP dissector crash via packet injection or crafted capture file. CVE-2024-0208...

7.8CVSS7.3AI score0.03456EPSS
Exploits2References2
NVD
NVD
added 2024/02/19 8:15 p.m.28 views

CVE-2023-50257

eProsima Fast DDS formerly Fast RTPS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data pUD and guid values used to disconnect between nodes are not encrypted, a vulnerability has be...

9.6CVSS9.2AI score0.00478EPSS
Exploits0References5
OSV
OSV
added 2024/02/19 8:15 p.m.5 views

UBUNTU-CVE-2023-50257

eProsima Fast DDS formerly Fast RTPS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data pUD and guid values used to disconnect between nodes are not encrypted, a vulnerability has be...

9.6CVSS5.8AI score0.00478EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/02/19 7:22 p.m.11 views

CVE-2023-50257

eProsima Fast DDS formerly Fast RTPS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data pUD and guid values used to disconnect between nodes are not encrypted, a vulnerability has be...

9.6CVSS9.2AI score0.00478EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/02/19 7:22 p.m.11 views

CVE-2023-50257 Disconnect Vulnerability in RTPS Packets Used by SROS2

eProsima Fast DDS formerly Fast RTPS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data pUD and guid values used to disconnect between nodes are not encrypted, a vulnerability has be...

9.6CVSS6.8AI score0.00478EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/02/19 7:22 p.m.31 views

CVE-2023-50257 Disconnect Vulnerability in RTPS Packets Used by SROS2

eProsima Fast DDS formerly Fast RTPS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data pUD and guid values used to disconnect between nodes are not encrypted, a vulnerability has be...

9.6CVSS9.4AI score0.00478EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/02/11 12:0 a.m.35 views

Fedora 38 : wireshark (2024-fdc7dfb959)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-fdc7dfb959 advisory. New version 4.0.12. Includes fixes for CVE-2023-5371, CVE-2023-6174, CVE-2023-6175, CVE-2024-0208. Tenable has extracted the preceding description...

7.8CVSS6.3AI score0.03456EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2024/02/10 12:0 a.m.43 views

Fedora 39 : wireshark (2024-b72131479b)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b72131479b advisory. New version 4.0.12. Includes fixes for CVE-2023-5371, CVE-2023-6174, CVE-2023-6175, CVE-2024-0208. Tenable has extracted the preceding description...

7.8CVSS6.3AI score0.03456EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2024/02/04 12:0 a.m.30 views

GLSA-202402-09 : Wireshark: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-09 Wireshark: Multiple Vulnerabilities - RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file CVE-2023-5371 - SSH dissector crash i...

6.5CVSS6.1AI score0.00746EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.35 views

Oracle Linux 8 : wireshark (ELSA-2023-7015)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7015 advisory. 1:2.6.2-17 - Resolves: 2211412 - XRA dissector infinite loop 1:2.6.2-16 - Resolves: 2210866 - VMS TCPIPtrace file parser crash - Resolves: 2210867 -...

6.5CVSS7.4AI score0.02275EPSS
Exploits4References5
Oracle linux
Oracle linux
added 2023/11/17 12:0 a.m.33 views

wireshark security update

1:2.6.2-17 - Resolves: 2211412 - XRA dissector infinite loop 1:2.6.2-16 - Resolves: 2210866 - VMS TCPIPtrace file parser crash - Resolves: 2210867 - NetScaler file parser crash - Resolves: 2210869 - RTPS dissector crash...

6.5CVSS6.6AI score0.02275EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2023/11/16 7:15 p.m.27 views

CVE-2023-5371

A memory leak flaw was found in Wireshark's RTPS dissector. This issue may cause an application crash via packet injection or crafted capture file...

6.5CVSS7.5AI score0.00485EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/11/14 4:7 p.m.3 views

wireshark: RTPS dissector crash

A flaw was found in the RTPS dissector of Wireshark. This issue occurs when decoding malformed packets from a pcap file or from the network, causing a buffer overflow, resulting in a denial of service...

6.5CVSS5.9AI score0.02275EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/11/14 4:7 p.m.43 views

Moderate: Red Hat Security Advisory: wireshark security update

An update for wireshark is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

6.5CVSS6.7AI score0.02275EPSS
Exploits4References6
AlmaLinux
AlmaLinux
added 2023/11/14 12:0 a.m.39 views

Moderate: wireshark security update

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security Fixes: wireshark: RTPS dissector crash CVE-2023-0666 wireshark: VMS TCPIPtrace file parser crash CVE-2023-2856 wireshark: NetScaler file parser crash...

6.5CVSS6.9AI score0.02275EPSS
Exploits4References10
OSV
OSV
added 2023/11/14 12:0 a.m.23 views

ALSA-2023:7015 Moderate: wireshark security update

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security Fixes: wireshark: RTPS dissector crash CVE-2023-0666 wireshark: VMS TCPIPtrace file parser crash CVE-2023-2856 wireshark: NetScaler file parser crash...

6.5CVSS6.3AI score0.02275EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.38 views

CentOS 8 : wireshark (CESA-2023:7015)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:7015 advisory. - Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to...

6.5CVSS7.8AI score0.02275EPSS
Exploits4References5
RedHat Linux
RedHat Linux
added 2023/11/07 8:47 a.m.5 views

wireshark: RTPS dissector crash

A flaw was found in the RTPS dissector of Wireshark. This issue occurs when decoding malformed packets from a pcap file or from the network, causing a buffer overflow, resulting in a denial of service...

6.5CVSS5.9AI score0.02275EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/10/17 12:0 a.m.31 views

SUSE SLED15: libwireshark15 / libwiretap12 / libwsutil13 / wireshark / etc (SUSE-SU-2023:4083-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4083-1 advisory. Updated to version 3.6.17: - CVE-2023-5371: Fixed a memory leak issue in the RTPS dissector bsc1215959. Tenable has...

6.5CVSS6.7AI score0.00485EPSS
Exploits1References4
Redos
Redos
added 2023/10/13 12:0 a.m.26 views

ROS-20231013-06

Memory leak vulnerability in the RTPS dissector of the Wireshark computer network traffic analyzer. Exploitation of the vulnerability could allow an attacker acting remotely to perform a denial of denial of service by injecting packets or creating a capture file...

6.5CVSS7AI score0.00485EPSS
Exploits1
Rows per page
Query Builder