Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wire vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2016-7177
epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x prior to 2.0.6 does not restrict the number of channels, which allows remote malicious users to cause a denial of service (buffer over-read and application crash) via a crafted packet.
Debian Debian Linux 8.0
Wireshark Wireshark 2.0.0
Wireshark Wireshark 2.0.4
Wireshark Wireshark 2.0.1
Wireshark Wireshark 2.0.2
Wireshark Wireshark 2.0.3
Wireshark Wireshark 2.0.5
445
VMScore
CVE-2017-9351
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully.
Wireshark Wireshark
NA
CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file
Wireshark Wireshark
Debian Debian Linux 10.0
Debian Debian Linux 12.0
445
VMScore
CVE-2006-4331
Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote malicious users to cause a denial of service (crash) via unspecified vectors.
Wireshark Wireshark 0.99.2
445
VMScore
CVE-2017-15189
In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements.
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.4.1
445
VMScore
CVE-2017-15190
In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp.c by correcting the scope of a variable.
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.4.1
445
VMScore
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length.
Wireshark Wireshark
Debian Debian Linux 8.0
694
VMScore
CVE-2017-15193
In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by changing the memory-allocation approach.
Wireshark Wireshark 2.2.6
Wireshark Wireshark 2.2.0
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.2.2
Wireshark Wireshark 2.2.1
Wireshark Wireshark 2.2.4
Wireshark Wireshark 2.2.5
Wireshark Wireshark 2.2.7
Wireshark Wireshark 2.2.8
Wireshark Wireshark 2.2.3
Wireshark Wireshark 2.2.9
Wireshark Wireshark 2.4.1
NA
CVE-2024-26752
In the Linux kernel, the following vulnerability has been resolved: l2tp: pass correct message length to ip6_append_data l2tp_ip6_sendmsg needs to avoid accounting for the transport header twice when splicing more data into an already partially-occupied skbuff. To manage this, we...
445
VMScore
CVE-2017-15192
In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by considering a case where not all of the BTATT packets have the same encapsulation level.
Wireshark Wireshark 2.2.6
Wireshark Wireshark 2.2.0
Wireshark Wireshark 2.4.0
Wireshark Wireshark 2.2.2
Wireshark Wireshark 2.2.1
Wireshark Wireshark 2.2.4
Wireshark Wireshark 2.2.5
Wireshark Wireshark 2.2.7
Wireshark Wireshark 2.2.8
Wireshark Wireshark 2.2.3
Wireshark Wireshark 2.2.9
Wireshark Wireshark 2.4.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »