Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wire vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-7178
epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 2.x prior to 2.0.6 does not ensure that memory is allocated for certain data structures, which allows remote malicious users to cause a denial of service (invalid write access and application crash) via a craf...
Wireshark Wireshark 2.0.0
Wireshark Wireshark 2.0.4
Wireshark Wireshark 2.0.1
Wireshark Wireshark 2.0.2
Wireshark Wireshark 2.0.3
Wireshark Wireshark 2.0.5
Debian Debian Linux 8.0
5
CVSSv2
CVE-2017-9351
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully.
Wireshark Wireshark
NA
CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file
Wireshark Wireshark
Debian Debian Linux 10.0
Debian Debian Linux 12.0
5
CVSSv2
CVE-2006-4331
Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote malicious users to cause a denial of service (crash) via unspecified vectors.
Wireshark Wireshark 0.99.2
5
CVSSv2
CVE-2017-15189
In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements.
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.4.1
5
CVSSv2
CVE-2017-15190
In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp.c by correcting the scope of a variable.
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.4.1
5
CVSSv2
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length.
Wireshark Wireshark
Debian Debian Linux 8.0
7.8
CVSSv2
CVE-2017-15193
In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by changing the memory-allocation approach.
Wireshark Wireshark 2.2.6
Wireshark Wireshark 2.2.0
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.2.2
Wireshark Wireshark 2.2.1
Wireshark Wireshark 2.2.4
Wireshark Wireshark 2.2.5
Wireshark Wireshark 2.2.7
Wireshark Wireshark 2.2.8
Wireshark Wireshark 2.2.3
Wireshark Wireshark 2.2.9
Wireshark Wireshark 2.4.1
5
CVSSv2
CVE-2017-15192
In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by considering a case where not all of the BTATT packets have the same encapsulation level.
Wireshark Wireshark 2.2.6
Wireshark Wireshark 2.2.0
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.2.2
Wireshark Wireshark 2.2.1
Wireshark Wireshark 2.2.4
Wireshark Wireshark 2.2.5
Wireshark Wireshark 2.2.7
Wireshark Wireshark 2.2.8
Wireshark Wireshark 2.2.3
Wireshark Wireshark 2.2.9
Wireshark Wireshark 2.4.1
NA
CVE-2024-26752
In the Linux kernel, the following vulnerability has been resolved: l2tp: pass correct message length to ip6_append_data l2tp_ip6_sendmsg needs to avoid accounting for the transport header twice when splicing more data into an already partially-occupied skbuff. To manage this, we...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »