Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2023-1993

Published: 12/04/2023 Updated: 07/11/2023
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Wireshark

Vulnerability Summary

LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

wireshark wireshark

debian debian linux 10.0

debian debian linux 12.0

fedoraproject fedora 36

fedoraproject fedora 37

fedoraproject fedora 38

Vendor Advisories

Debian CVElist Bug Report Logs: wireshark: CVE-2023-1992 CVE-2023-1993 CVE-2023-1994
Debian Bug report logs - #1034721 wireshark: CVE-2023-1992 CVE-2023-1993 CVE-2023-1994 Package: src:wireshark; Maintainer for src:wireshark is Balint Reczey <balint@balintreczeyhu>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Sat, 22 Apr 2023 17:33:02 UTC Severity: important Tags: security, upstream Foun ...
Debian Security Advisories: DSA-5429-1 wireshark -- security update
Multiple vulnerabilities have been discocvered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code For the stable distribution (bookworm), these problems have been fixed in version 406-1~deb12u1 We recommend that you upgrade your wireshark packages For the detailed security statu ...
Amazon Linux 2: ALAS2-2023-2276
LISP dissector large loop in Wireshark 400 to 404 and 360 to 3612 allows denial of service via packet injection or crafted capture file (CVE-2023-1993) ...
Red Hat:
Description<!----> This CVE is under investigation by Red Hat Product Security ...

References

CWE-834https://www.wireshark.org/security/wnpa-sec-2023-10.htmlhttps://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1993.jsonhttps://gitlab.com/wireshark/wireshark/-/issues/18900https://lists.debian.org/debian-lts-announce/2023/04/msg00029.htmlhttps://www.debian.org/security/2023/dsa-5429https://security.gentoo.org/glsa/202309-02https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EHLTD25WNQSPQNELX52UH6YLP4TBLKTT/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PFJERBHVWYLYWXO2B3V47QH66IEB6EZ3/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FZA7IMATNNQPLIM6WMRPM3T5ZY24NRR2/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034721https://nvd.nist.govhttps://www.debian.org/security/2023/dsa-5429
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook