Home/Product/wireshark
Product

wireshark

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-6525
>= 4.6.0 and < 4.6.5
IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.4
5.5MEDIUM
 CVE-2026-5656
>= 4.4.0 and < 4.4.15
Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution
7.0HIGH
 CVE-2026-5405
>= 4.4.0 and < 4.4.15
RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution
7.8HIGH
 CVE-2026-5404
>= 4.4.0 and < 4.4.15
K12 RF5 file parser crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
4.7MEDIUM
 CVE-2026-5403
>= 4.4.0 and < 4.4.15
SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution
7.8HIGH
 CVE-2026-6870
>= 4.4.0 and <= 4.4.14
GSM RP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6869
>= 4.4.0 and <= 4.4.14
WebSocket protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6867
>= 4.4.0 and <= 4.4.14
SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6538
>= 4.4.0 and <= 4.4.14
BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6537
>= 4.4.0 and <= 4.4.14
ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6536
>= 4.6.0 and <= 4.6.4
DLMS/COSEM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4
5.5MEDIUM
 CVE-2026-6535
>= 4.4.0 and <= 4.4.14
Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6534
>= 4.4.0 and <= 4.4.14
USB HID protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6533
>= 4.4.0 and <= 4.4.14
Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6532
>= 4.4.0 and <= 4.4.14
Kismet protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6531
>= 4.4.0 and <= 4.4.14
SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6530
>= 4.4.0 and <= 4.4.14
DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6529
>= 4.4.0 and <= 4.4.14
iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6528
>= 4.6.0 and <= 4.6.4
TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service
5.5MEDIUM
 CVE-2026-6527
>= 4.4.0 and <= 4.4.14
ASN.1 PER protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6526
>= 4.6.0 and <= 4.6.4
RTSP protocol dissector crash in Wireshark 4.6.0 to 4.6.4
5.5MEDIUM
 CVE-2026-6524
>= 4.4.0 and <= 4.4.14
MySQL protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6523
>= 4.4.0 and <= 4.4.14
GNW protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6522
>= 4.4.0 and <= 4.4.14
RPKI-Router protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6521
>= 4.4.0 and <= 4.4.14
OpenFlow v5 protocol dissector infinite loops in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6520
>= 4.4.0 and <= 4.4.14
OpenFlow v6 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6519
>= 4.4.0 and <= 4.4.14
MBIM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5657
>= 4.4.0 and <= 4.4.14
iLBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5655
>= 4.6.0 and <= 4.6.4
SDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 allows denial of service
5.5MEDIUM
 CVE-2026-5654
>= 4.4.0 and <= 4.4.14
AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5653
>= 4.4.0 and <= 4.4.14
DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5409
>= 4.4.0 and <= 4.4.14
Monero protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5408
>= 4.4.0 and <= 4.4.14
BT-DHT protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5407
>= 4.4.0 and <= 4.4.14
SMB2 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5406
>= 4.4.0 and <= 4.4.14
FC-SWILS protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5402
>= 4.6.0 and <= 4.6.4
TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code execution
8.8HIGH
 CVE-2026-5401
>= 4.4.0 and <= 4.4.14
AFP Spotlight protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-5299
>= 4.4.0 and <= 4.4.14
ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-7379
>= 4.4.0 and < 4.4.15
Memory leak in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-7378
>= 4.4.0 and < 4.4.15
Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-7376
>= 4.4.0 and < 4.4.15
Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-7375
>= 4.4.0 and < 4.4.15
UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-6868
>= 4.4.0 and < 4.4.15
HTTP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
5.5MEDIUM
 CVE-2026-3203
>= 4.4.0 and < 4.4.14
RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
5.5MEDIUM
 CVE-2026-3202
>= 4.6.0 and < 4.6.4
NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service
4.7MEDIUM
 CVE-2026-3201
>= 4.4.0 and < 4.4.14
USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
4.7MEDIUM
 CVE-2026-0962
>= 4.2.2 and < 4.4.13
SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
5.3MEDIUM
 CVE-2026-0961
>= 4.4.0 and < 4.4.13
BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
5.5MEDIUM
 CVE-2026-0960
>= 4.4.0 and < 4.4.13
HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service
4.7MEDIUM
 CVE-2026-0959
>= 4.4.0 and < 4.4.13
IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
5.3MEDIUM
 CVE-2025-13946
>= 4.4.0 and < 4.4.12
MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service
5.5MEDIUM
 CVE-2025-13945
>= 4.6.0 and < 4.6.2
HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service
5.5MEDIUM
 CVE-2025-13674
all versions
BPv7 dissector crash in Wireshark 4.6.0 allows denial of service
5.5MEDIUM
 CVE-2025-13499
>= 4.4.0 and < 4.4.11
Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service
7.8HIGH
 CVE-2025-11626
>= 4.2.0 and < 4.2.14
MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service
5.5MEDIUM
 CVE-2025-9817
>= 4.4.0 and <= 4.4.8
SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service
7.8HIGH
 CVE-2025-5601
>= 4.2.0 and < 4.2.12
Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted c
7.8HIGH
 CVE-2025-1492
>= 4.2.0 and <= 4.2.10
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet inj
7.8HIGH
 CVE-2024-11596
>= 4.2.0 and < 4.2.9
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted captu
7.8HIGH
 CVE-2024-11595
>= 4.2.0 and < 4.2.9
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or
7.8HIGH
 CVE-2024-9781
>= 4.2.0 and < 4.2.8
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection o
7.8HIGH
 CVE-2024-9780
all versions
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file
7.8HIGH
 CVE-2024-8645
>= 4.0.0 and < 4.0.16
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capt
5.5MEDIUM
 CVE-2024-8250
>= 4.0.0 and < 4.0.17
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted c
7.8HIGH
 CVE-2024-4855
>= 3.6.0 and < 3.6.23
Use after free issue in editcap could cause denial of service via crafted capture file
3.6LOW
 CVE-2024-4854
>= 3.6.0 and <= 3.6.22
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of se
6.4MEDIUM
 CVE-2024-4853
>= 3.6.0 and < 3.6.23
Memory handling issue in editcap could cause denial of service via crafted capture file
3.6LOW
 CVE-2024-2955
>= 4.0.0 and < 4.0.14
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capt
7.8HIGH
 CVE-2023-6175
>= 3.6.0 and <= 3.6.18
NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file
7.8HIGH
 CVE-2024-24479
< 4.2.0
A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and for
7.5HIGH
 CVE-2024-24476
< 4.2.0
A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and w
7.5HIGH
 CVE-2024-24478
< 4.2.0
An issue in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the packet-bgp.c, dissect_bgp_open(tv
7.5HIGH
 CVE-2024-0211
all versions
DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
7.8HIGH
 CVE-2024-0210
all versions
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
7.8HIGH
 CVE-2024-0209
>= 3.6.0 and <= 3.6.19
IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection
7.8HIGH
 CVE-2024-0208
>= 3.6.0 and <= 3.6.19
GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or cra
7.8HIGH
 CVE-2024-0207
all versions
HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
7.8HIGH
 CVE-2023-6174
>= 4.0.0 and <= 4.0.10
SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted capture file
6.3MEDIUM
 CVE-2023-5371
>= 3.6.0 and < 3.6.17
RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafte
5.3MEDIUM
 CVE-2023-2906
>= 2.0.0 and <= 4.0.7
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is
6.5MEDIUM
 CVE-2023-4513
>= 3.6.0 and <= 3.6.15
BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or craf
5.3MEDIUM
 CVE-2023-4512
>= 4.0.0 and <= 4.0.7
CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
5.3MEDIUM
 CVE-2023-4511
>= 3.6.0 and <= 3.6.15
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or cr
5.3MEDIUM
 CVE-2023-3649
>= 4.0.0 and <= 4.0.6
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
5.3MEDIUM
 CVE-2023-3648
>= 3.6.0 and <= 3.6.14
Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted cap
5.3MEDIUM
 CVE-2023-0668
>= 3.6.0 and < 3.6.14
Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by
6.5MEDIUM
 CVE-2023-0667
>= 4.0.0 and < 4.0.6
Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unu
6.5MEDIUM
 CVE-2023-0666
>= 4.0.0 and < 4.0.6
Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default
6.5MEDIUM
 CVE-2023-2952
>= 3.6.0 and < 3.6.14
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or craft
5.3MEDIUM
 CVE-2023-2879
>= 3.6.0 and < 3.6.14
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted captu
6.3MEDIUM
 CVE-2023-2858
>= 3.6.0 and < 3.6.14
NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
5.3MEDIUM
 CVE-2023-2857
>= 3.6.0 and < 3.6.14
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
5.3MEDIUM
 CVE-2023-2856
>= 3.6.0 and < 3.6.14
VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
5.3MEDIUM
 CVE-2023-2855
>= 3.6.0 and < 3.6.14
Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
5.3MEDIUM
 CVE-2023-2854
>= 3.6.0 and < 3.6.14
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
5.3MEDIUM
 CVE-2023-1994
>= 3.6.0 and < 3.6.13
GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted cap
6.3MEDIUM
 CVE-2023-1993
>= 3.6.0 and < 3.6.13
LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted
6.3MEDIUM
 CVE-2023-1992
>= 3.6.0 and < 3.6.13
RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted
6.3MEDIUM
 CVE-2023-1161
>= 3.6.0 and < 3.6.12
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet inject
6.3MEDIUM
 CVE-2023-0417
>= 3.6.0 and <= 3.6.10
Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection
6.3MEDIUM
 CVE-2023-0416
>= 3.6.0 and <= 3.6.10
GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted c
6.3MEDIUM
 CVE-2023-0415
>= 3.6.0 and <= 3.6.10
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted
6.3MEDIUM
 CVE-2023-0414
>= 4.0.0 and <= 4.0.2
Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file
6.3MEDIUM
 CVE-2023-0413
>= 3.6.0 and <= 3.6.10
Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted
6.3MEDIUM
 CVE-2023-0412
>= 3.6.0 and <= 3.6.10
TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted
6.3MEDIUM
 CVE-2023-0411
>= 3.6.0 and <= 3.6.10
Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet inj
6.3MEDIUM
 CVE-2022-4345
>= 3.6.0 and < 3.6.10
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial o
6.3MEDIUM
 CVE-2022-4344
>= 3.0.0 and < 3.6.10
Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via pack
6.3MEDIUM
 CVE-2022-3724
>= 3.6.0 and <= 3.6.8
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted captu
6.3MEDIUM
 CVE-2022-3725
>= 3.6.0 and <= 3.6.8
Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture
6.3MEDIUM
 CVE-2022-3190
>= 3.4.0 and < 3.4.16
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of servi
6.3MEDIUM
 CVE-2022-0585
>= 3.4.0 and < 3.4.12
Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet inj
4.3MEDIUM
 CVE-2022-0586
>= 3.4.0 and < 3.4.12
Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet inje
6.3MEDIUM
 CVE-2022-0583
>= 3.4.0 and < 3.4.12
Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection
6.3MEDIUM
 CVE-2022-0582
>= 3.4.0 and < 3.4.12
Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via pack
6.3MEDIUM
 CVE-2022-0581
>= 3.4.0 and < 3.4.12
Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection
6.3MEDIUM
 CVE-2021-4190
>= 3.4.0 and < 3.4.12
Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file
7.5HIGH
 CVE-2021-4186
>= 3.4.0 and <= 3.4.10
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
6.3MEDIUM
 CVE-2021-4185
>= 3.4.0 and < 3.4.11
Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or craft
7.5HIGH
 CVE-2021-4184
>= 3.4.0 and <= 3.4.10
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection
7.5HIGH
 CVE-2021-4183
all versions
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file
5.5MEDIUM
 CVE-2021-4182
>= 3.4.0 and < 3.4.11
Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted ca
7.5HIGH
 CVE-2021-4181
>= 3.4.0 and < 3.4.11
Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafte
7.5HIGH
 CVE-2021-39929
>= 3.2.0 and <= 3.2.17
Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via
7.5HIGH
 CVE-2021-39926
>= 3.4.0 and <= 3.4.9
Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or cr
7.5HIGH
 CVE-2021-39925
>= 3.2.0 and <= 3.2.17
Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet
7.5HIGH
 CVE-2021-39924
>= 3.2.0 and <= 3.2.17
Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet inje
7.5HIGH
 CVE-2021-39923
>= 3.2.0 and <= 3.2.17
Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or
7.5HIGH
 CVE-2021-39922
>= 3.2.0 and <= 3.2.17
Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet inject
7.5HIGH
 CVE-2021-39921
>= 3.2.0 and <= 3.2.17
NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet
7.5HIGH
 CVE-2021-39928
>= 3.2.0 and < 3.2.18
NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via p
7.5HIGH
 CVE-2021-39920
>= 3.4.0 and < 3.4.10
NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafte
7.5HIGH
 CVE-2021-22235
>= 3.2.0 and < 3.2.15
Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service via packet injection or crafted ca
7.5HIGH
 CVE-2021-22222
>= 3.4.0 and <= 3.4.5
Infinite loop in DVB-S2-BB dissector in Wireshark 3.4.0 to 3.4.5 allows denial of service via packet injection or crafted capture
7.5HIGH
 CVE-2021-22207
>= 3.2.0 and <= 3.2.12
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via pack
5.5MEDIUM
 CVE-2021-22191
>= 3.2.0 and <= 3.2.11
Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via packet injection o
6.3MEDIUM
 CVE-2021-22174
>= 3.4.0 and < 3.4.3
Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file
3.7LOW
 CVE-2021-22173
>= 3.4.0 and < 3.4.3
Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file
3.7LOW
 CVE-2020-26422
all versions
Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 allows denial of service via packet injection or crafted capture fil
3.7LOW
 CVE-2020-26421
>= 3.2.0 and <= 3.2.8
Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service v
4.2MEDIUM
 CVE-2020-26420
>= 3.2.0 and <= 3.2.8
Memory leak in RTPS protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or craf
3.1LOW
 CVE-2020-26419
all versions
Memory leak in the dissection engine in Wireshark 3.4.0 allows denial of service via packet injection or crafted capture file.
3.1LOW
 CVE-2020-26418
>= 3.2.0 and <= 3.2.8
Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or cra
3.1LOW
 CVE-2020-28030
>= 3.2.0 and <= 3.2.7
In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting t
7.5HIGH
 CVE-2020-26575
<= 3.2.7
In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. This was addressed in
7.5HIGH
 CVE-2020-25866
>= 3.0.0 and <= 3.0.13
In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was s
7.5HIGH
 CVE-2020-25863
>= 2.6.0 and <= 2.6.20
In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in
7.5HIGH
 CVE-2020-25862
>= 2.6.0 and <= 2.6.20
In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/disse
7.5HIGH
 CVE-2020-17498
>= 3.2.0 and < 3.2.6
In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avo
6.5MEDIUM
 CVE-2020-15466
>= 3.2.0 and <= 3.2.4
In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.
7.5HIGH
 CVE-2020-13164
>= 2.6.0 and <= 2.6.16
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/disse
7.5HIGH
 CVE-2020-11647
>= 2.6.0 and <= 2.6.15
In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dis
7.5HIGH
 CVE-2020-9431
>= 2.6.0 and <= 2.6.14
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in e
7.5HIGH
 CVE-2020-9430
>= 2.6.0 and <= 2.6.14
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plu
7.5HIGH
 CVE-2020-9429
>= 3.2.0 and <= 3.2.1
In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by hand
7.5HIGH
 CVE-2020-9428
>= 2.6.0 and <= 2.6.14
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissec
7.5HIGH
 CVE-2020-7045
>= 3.0.0 and < 3.0.8
In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by validat
6.5MEDIUM
 CVE-2020-7044
>= 3.2.0 and < 3.2.1
In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >=
7.5HIGH
 CVE-2019-19553
>= 2.6.0 and <= 2.6.12
In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/pac
7.5HIGH
 CVE-2019-16319
>= 2.6.0 and <= 2.6.10
In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugi
7.5HIGH
 CVE-2019-13619
>= 2.4.0 and <= 2.4.15
In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This
7.5HIGH
 CVE-2019-12295
>= 2.4.0 and <= 2.4.14
In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/pa
7.5HIGH
 CVE-2019-10903
>= 2.4.0 and <= 2.4.13
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/diss
7.5HIGH
 CVE-2019-10902
all versions
In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet-tsdns.c by splitting strings saf
7.5HIGH
 CVE-2019-10901
>= 2.4.0 and <= 2.4.13
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/pac
7.5HIGH
 CVE-2019-10900
all versions
In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop. This was addressed in epan/dissectors/file-rbm.c by handling
7.5HIGH
 CVE-2019-10899
>= 2.4.0 and <= 2.4.13
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This was addressed in epan/dissectors/p
7.5HIGH
 CVE-2019-10898
all versions
In Wireshark 3.0.0, the GSUP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gsm_gsup.c by
7.5HIGH
 CVE-2019-10897
all versions
In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-ieee802
7.5HIGH
 CVE-2019-10896
>= 2.4.0 and <= 2.4.13
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF dissector could crash. This was addressed in epan/dissectors/pack
7.5HIGH
 CVE-2019-10895
>= 2.4.0 and <= 2.4.13
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/nets
7.5HIGH
 CVE-2019-10894
>= 2.4.0 and <= 2.4.13
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/
7.5HIGH
 CVE-2019-9214
>= 2.4.0 and <= 2.4.12
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash. This was addressed in epan/dissectors/packet-rpc
7.5HIGH
 CVE-2019-9209
>= 2.4.0 and <= 2.4.12
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/diss
5.5MEDIUM
 CVE-2019-9208
>= 2.4.0 and <= 2.4.12
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/t
7.5HIGH
 CVE-2019-5721
>= 2.4.0 and <= 2.4.11
In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in epan/dissectors/packet-enip.c by changing the
5.5MEDIUM
 CVE-2019-5719
>= 2.4.0 and <= 2.4.11
In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-is
5.5MEDIUM
 CVE-2019-5718
>= 2.4.0 and <= 2.4.11
In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in
5.5MEDIUM
 CVE-2019-5717
>= 2.4.0 and <= 2.4.11
In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the P_MUL dissector could crash. This was addressed in epan/dissectors/packet-p_m
5.5MEDIUM
 CVE-2019-5716
>= 2.6.0 and <= 2.6.5
In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This was addressed in epan/dissectors/packet-6lowpan.c by avoiding
5.5MEDIUM
 CVE-2018-19628
>= 2.6.0 and <= 2.6.4
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.
7.5HIGH
 CVE-2018-19627
>= 2.4.0 and <= 2.4.10
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by ad
7.5HIGH
 CVE-2018-19626
>= 2.4.0 and <= 2.4.10
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom
5.5MEDIUM
 CVE-2018-19625
>= 2.4.0 and <= 2.4.10
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c
5.5MEDIUM
 CVE-2018-19624
>= 2.4.0 and <= 2.4.10
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs
5.5MEDIUM
 CVE-2018-19623
>= 2.4.0 and <= 2.4.10
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbi
7.5HIGH
 CVE-2018-19622
>= 2.4.0 and <= 2.4.10
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dis
7.5HIGH
 CVE-2018-18227
>= 2.4.0 and <= 2.4.9
In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was addressed in epan/dissectors/p
7.5HIGH
 CVE-2018-18226
>= 2.6.0 and <= 2.6.3
In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/
7.5HIGH
 CVE-2018-18225
>= 2.6.0 and <= 2.6.3
In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that
7.5HIGH
 CVE-2018-16058
>= 2.2.0 and <= 2.2.16
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector could crash. This was addressed in
7.5HIGH
 CVE-2018-16057
>= 2.2.0 and <= 2.2.16
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Radiotap dissector could crash. This was addressed in epan/d
7.5HIGH
 CVE-2018-16056
>= 2.2.0 and <= 2.2.16
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth Attribute Protocol dissector could crash. This was
7.5HIGH
 CVE-2018-14438
<= 2.6.2
In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a N
7.5HIGH
 CVE-2018-14370
>= 2.4.0 and <= 2.4.7
In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/a
7.5HIGH
 CVE-2018-14369
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/diss
7.5HIGH
 CVE-2018-14368
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. Th
7.5HIGH
 CVE-2018-14367
>= 2.4.0 and <= 2.4.7
In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/pac
7.5HIGH
 CVE-2018-14344
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/disse
7.5HIGH
 CVE-2018-14343
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/
7.5HIGH
 CVE-2018-14342
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was
7.5HIGH
 CVE-2018-14341
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This
7.5HIGH
 CVE-2018-14340
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was
7.5HIGH
 CVE-2018-14339
>= 2.2.0 and <= 2.2.15
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addr
7.5HIGH
 CVE-2018-11362
>= 2.2.0 and <= 2.2.14
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/pac
7.5HIGH
 CVE-2018-11361
all versions
In Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/dot11decrypt.c by avoiding a
7.5HIGH
 CVE-2018-11360
>= 2.2.0 and <= 2.2.14
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash. This was addressed in epan/dissecto
7.5HIGH
 CVE-2018-11359
>= 2.2.0 and <= 2.2.14
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in
7.5HIGH
 CVE-2018-11358
>= 2.2.0 and <= 2.2.14
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the Q.931 dissector could crash. This was addressed in epan/dissectors/pa
7.5HIGH
 CVE-2018-11357
>= 2.2.0 and <= 2.2.14
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LTP dissector and other dissectors could consume excessive memory. Th
7.5HIGH
 CVE-2018-11356
>= 2.2.0 and <= 2.2.14
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the DNS dissector could crash. This was addressed in epan/dissectors/pack
7.5HIGH
 CVE-2018-11355
all versions
In Wireshark 2.6.0, the RTCP dissector could crash. This was addressed in epan/dissectors/packet-rtcp.c by avoiding a buffer overf
7.5HIGH
 CVE-2018-11354
all versions
In Wireshark 2.6.0, the IEEE 1905.1a dissector could crash. This was addressed in epan/dissectors/packet-ieee1905.c by making a ce
7.5HIGH
 CVE-2018-9274
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ui/failure_message.c has a memory leak.
7.5HIGH
 CVE-2018-9273
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-pcp.c has a memory leak.
7.5HIGH
 CVE-2018-9272
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-h223.c has a memory leak.
7.5HIGH
 CVE-2018-9271
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-multipart.c has a memory leak.
7.5HIGH
 CVE-2018-9270
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/oids.c has a memory leak.
7.5HIGH
 CVE-2018-9269
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-giop.c has a memory leak.
7.5HIGH
 CVE-2018-9268
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-smb2.c has a memory leak.
7.5HIGH
 CVE-2018-9267
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-lapd.c has a memory leak.
7.5HIGH
 CVE-2018-9266
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-isup.c has a memory leak.
7.5HIGH
 CVE-2018-9265
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-tn3270.c has a memory leak.
7.5HIGH
 CVE-2018-9264
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the ADB dissector could crash with a heap-based buffer overflow. This was address
7.5HIGH
 CVE-2018-9263
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-
7.5HIGH
 CVE-2018-9262
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the VLAN dissector could crash. This was addressed in epan/dissectors/packet-vlan
7.5HIGH
 CVE-2018-9261
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop that ends with a heap-based buff
7.5HIGH
 CVE-2018-9260
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/pa
7.5HIGH
 CVE-2018-9259
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the MP4 dissector could crash. This was addressed in epan/dissectors/file-mp4.c b
7.5HIGH
 CVE-2018-9258
>= 2.4.0 and <= 2.4.5
In Wireshark 2.4.0 to 2.4.5, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by preserving valid
7.5HIGH
 CVE-2018-9257
>= 2.4.0 and <= 2.4.5
In Wireshark 2.4.0 to 2.4.5, the CQL dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-cql.c
7.5HIGH
 CVE-2018-9256
>= 2.2.0 and <= 2.2.13
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwa
7.5HIGH
 CVE-2018-7421
>= 2.2.0 and <= 2.2.12
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the DMP dissector could go into an infinite loop. This was addressed in epan/diss
7.5HIGH
 CVE-2018-7420
>= 2.2.0 and <= 2.2.12
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by add
7.5HIGH
 CVE-2018-7419
>= 2.2.0 and <= 2.2.12
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/n
7.5HIGH
 CVE-2018-7418
>= 2.2.0 and <= 2.2.12
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-s
7.5HIGH
 CVE-2018-7417
>= 2.2.0 and <= 2.2.12
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the IPMI dissector could crash. This was addressed in epan/dissectors/packet-ipmi
7.5HIGH
 CVE-2018-7337
>= 2.4.0 and <= 2.4.4
In Wireshark 2.4.0 to 2.4.4, the DOCSIS protocol dissector could crash. This was addressed in plugins/docsis/packet-docsis.c by re
7.5HIGH
 CVE-2018-7336
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/pac
7.5HIGH
 CVE-2018-7335
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.
7.5HIGH
 CVE-2018-7334
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the UMTS MAC dissector could crash. This was addressed in epan/dissectors/packet-
7.5HIGH
 CVE-2018-7333
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite loop that was addressed by valid
7.5HIGH
 CVE-2018-7332
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by valida
7.5HIGH
 CVE-2018-7331
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-ber.c had an infinite loop that was addressed by validatin
7.5HIGH
 CVE-2018-7330
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thread.c had an infinite loop that was addressed by using
7.5HIGH
 CVE-2018-7329
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correc
7.5HIGH
 CVE-2018-7328
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-usb.c had an infinite loop that was addressed by rejecting
7.5HIGH
 CVE-2018-7327
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-openflow_v6.c had an infinite loop that was addressed by v
7.5HIGH
 CVE-2018-7326
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-lltd.c had an infinite loop that was addressed by using a
7.5HIGH
 CVE-2018-7325
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by vali
7.5HIGH
 CVE-2018-7324
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a
7.5HIGH
 CVE-2018-7323
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring tha
7.5HIGH
 CVE-2018-7322
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking
7.5HIGH
 CVE-2018-7321
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not procee
7.5HIGH
 CVE-2018-7320
>= 2.2.0 and <= 2.2.12
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors
7.5HIGH
 CVE-2018-6836
<= 2.4.4
The netmonrec_comment_destroy function in wiretap/netmon.c in Wireshark through 2.4.4 performs a free operation on an uninitialize
9.8CRITICAL
 CVE-2018-5336
>= 2.2.0 and <= 2.2.11
In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in e
7.5HIGH
 CVE-2018-5335
>= 2.2.0 and <= 2.2.11
In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c
6.5MEDIUM
 CVE-2018-5334
>= 2.2.0 and <= 2.2.11
In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by co
6.5MEDIUM
 CVE-2017-17997
<= 2.2.11
In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-
7.5HIGH
 CVE-2017-17935
<= 2.2.11
The File_read_line function in epan/wslua/wslua_file.c in Wireshark through 2.2.11 does not properly strip '\n' characters, which
7.5HIGH
 CVE-2017-17085
all versions
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was addressed in epan/dissectors/packe
7.5HIGH
 CVE-2017-17084
all versions
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. This was addressed in epan/dissectors/packet
7.5HIGH
 CVE-2017-17083
all versions
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-n
7.5HIGH
 CVE-2017-15193
all versions
In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epa
7.5HIGH
 CVE-2017-15192
all versions
In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-bta
7.5HIGH
 CVE-2017-15191
>= 2.0.0 and <= 2.0.15
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissec
7.5HIGH
 CVE-2017-15190
all versions
In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp.c by correcting the
7.5HIGH
 CVE-2017-15189
all versions
In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docs
7.5HIGH
 CVE-2017-13767
all versions
In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in
7.5HIGH
 CVE-2017-13766
all versions
In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in p
7.5HIGH
 CVE-2017-13765
>= 2.0.0 and <= 2.0.14
In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the IrCOMM dissector has a buffer over-read and application crash. This w
7.5HIGH
 CVE-2017-13764
all versions
In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/packet
7.5HIGH
 CVE-2017-11411
all versions
In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system memory. This was addre
7.5HIGH
 CVE-2017-11410
all versions
In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector could go into an infinite loop, triggered by packet injec
7.5HIGH
 CVE-2017-11409
>= 2.0.0 and <= 2.0.13
In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was addressed in epan/dissectors/packet-gprs
7.5HIGH
 CVE-2017-11408
all versions
In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector could crash. This was addressed in epan/dissectors/packet-amqp
7.5HIGH
 CVE-2017-11407
>= 2.0.0 and <= 2.0.13
In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c b
7.5HIGH
 CVE-2017-11406
>= 2.0.0 and <= 2.0.13
In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite loop. This was addressed in plugin
7.5HIGH
 CVE-2017-9766
all versions
In Wireshark 2.2.7, PROFINET IO data with a high recursion depth allows remote attackers to cause a denial of service (stack exhau
7.5HIGH
 CVE-2017-9617
all versions
In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag functi
5.5MEDIUM
 CVE-2017-9616
all versions
In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in
5.5MEDIUM
 CVE-2017-9354
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the RGMP dissector could crash. This was addressed in epan/dissectors/packet-rgmp
7.5HIGH
 CVE-2017-9353
>= 2.2.0 and <= 2.2.6
In Wireshark 2.2.0 to 2.2.6, the IPv6 dissector could crash. This was addressed in epan/dissectors/packet-ipv6.c by validating an
7.5HIGH
 CVE-2017-9352
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite loop. This was addressed in epan/d
7.5HIGH
 CVE-2017-9351
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epa
7.5HIGH
 CVE-2017-9350
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY dissector could crash or exhaust system memory. This was addressed
7.5HIGH
 CVE-2017-9349
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This was addressed in epan/dissectors/p
7.5HIGH
 CVE-2017-9348
>= 2.2.0 and <= 2.2.6
In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-d
7.5HIGH
 CVE-2017-9347
>= 2.2.0 and <= 2.2.6
In Wireshark 2.2.0 to 2.2.6, the ROS dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/
7.5HIGH
 CVE-2017-9346
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite loop. This was addressed in epan
7.5HIGH
 CVE-2017-9345
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop. This was addressed in epan/diss
7.5HIGH
 CVE-2017-9344
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/di
7.5HIGH
 CVE-2017-9343
>= 2.0.0 and <= 2.0.12
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the MSNIP dissector misuses a NULL pointer. This was addressed in epan/dissectors
7.5HIGH
 CVE-2017-7748
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection o
7.5HIGH
 CVE-2017-7747
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed
7.5HIGH
 CVE-2017-7746
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection
7.5HIGH
 CVE-2017-7745
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite loop, triggered by packet injecti
7.5HIGH
 CVE-2017-7705
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet i
7.5HIGH
 CVE-2017-7704
all versions
In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed captur
7.5HIGH
 CVE-2017-7703
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capt
7.5HIGH
 CVE-2017-7702
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection
7.5HIGH
 CVE-2017-7701
all versions
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection o
7.5HIGH
 CVE-2017-7700
>= 2.0.0 and <= 2.0.11
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malforme
6.5MEDIUM
 CVE-2016-7958
all versions
In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed i
7.5HIGH
 CVE-2016-7957
all versions
In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was
7.5HIGH
 CVE-2017-6474
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser infinite loop, triggered by a malformed capture
7.5HIGH
 CVE-2017-6473
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a K12 file parser crash, triggered by a malformed capture file. This was
7.5HIGH
 CVE-2017-6472
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an RTMPT dissector infinite loop, triggered by packet injection or a mal
7.5HIGH
 CVE-2017-6471
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed captur
7.5HIGH
 CVE-2017-6470
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capt
7.5HIGH
 CVE-2017-6469
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an LDSS dissector crash, triggered by packet injection or a malformed ca
7.5HIGH
 CVE-2017-6468
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser crash, triggered by a malformed capture file. Th
7.5HIGH
 CVE-2017-6467
>= 2.0.0 and <= 2.0.10
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a Netscaler file parser infinite loop, triggered by a malformed capture
7.5HIGH
 CVE-2017-6014
<= 2.2.4
In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion.
7.5HIGH
 CVE-2017-5597
all versions
In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go into a large loop, triggered by packet injection or
7.5HIGH
 CVE-2017-5596
all versions
In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injectio
7.5HIGH
 CVE-2016-9376
all versions
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network tr
5.9MEDIUM
 CVE-2016-9375
all versions
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or
5.9MEDIUM
 CVE-2016-9374
all versions
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the AllJoyn dissector could crash with a buffer over-read, triggered by network tr
5.9MEDIUM
 CVE-2016-9373
all versions
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traff
5.9MEDIUM
 CVE-2016-9372
all versions
In Wireshark 2.2.0 to 2.2.1, the Profinet I/O dissector could loop excessively, triggered by network traffic or a capture file. Th
5.9MEDIUM
 CVE-2016-7180
all versions
epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark 2.x before 2.0.6 does not properly consider whether a
5.9MEDIUM
 CVE-2016-7179
all versions
Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before
5.9MEDIUM
 CVE-2016-7178
all versions
epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated f
5.9MEDIUM
 CVE-2016-7177
all versions
epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the nu
5.9MEDIUM
 CVE-2016-7176
all versions
epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark 2.x before 2.0.6 calls snprintf with one of its input buffers as
5.9MEDIUM
 CVE-2016-7175
all versions
epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector in Wireshark 2.x before 2.0.6 mishandles MAC address data, which allows
5.9MEDIUM
 CVE-2016-5359
all versions
epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 1.12.x before 1.12.12 mishandles offsets, which allows remote a
5.9MEDIUM
 CVE-2016-5358
all versions
epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, whi
5.9MEDIUM
 CVE-2016-5357
all versions
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigne
5.9MEDIUM
 CVE-2016-5356
all versions
wiretap/cosine.c in the CoSine file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-inte
5.9MEDIUM
 CVE-2016-5355
all versions
wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-in
5.9MEDIUM
 CVE-2016-5354
all versions
The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles class types, which allows remote attackers to
5.9MEDIUM
 CVE-2016-5353
all versions
epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the r
5.9MEDIUM
 CVE-2016-5352
all versions
epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.4 mishandles certain length values, which allows re
5.9MEDIUM
 CVE-2016-5351
all versions
epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the lack of
5.9MEDIUM
 CVE-2016-5350
all versions
epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles
7.5HIGH
 CVE-2016-6513
all versions
epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which a
5.9MEDIUM
 CVE-2016-6512
all versions
epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows
5.9MEDIUM
 CVE-2016-6511
all versions
epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (OpenFlo
5.9MEDIUM
 CVE-2016-6510
all versions
Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allo
5.9MEDIUM
 CVE-2016-6509
all versions
epan/dissectors/packet-ldss.c in the LDSS dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 mishandles conversatio
5.9MEDIUM
 CVE-2016-6508
all versions
epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 uses an incorrect intege
5.9MEDIUM
 CVE-2016-6507
all versions
epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark 1.12.x before 1.12.13 allows remote attackers to cause a denial o
5.9MEDIUM
 CVE-2016-6506
all versions
epan/dissectors/packet-wsp.c in the WSP dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers
5.9MEDIUM
 CVE-2016-6505
all versions
epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote
5.9MEDIUM
 CVE-2016-6504
all versions
epan/dissectors/packet-ncp2222.inc in the NDS dissector in Wireshark 1.12.x before 1.12.13 does not properly maintain a ptvc data
5.9MEDIUM
 CVE-2016-6503
all versions
The CORBA IDL dissectors in Wireshark 2.x before 2.0.5 on 64-bit Windows platforms do not properly interact with Visual C++ compil
5.9MEDIUM
 CVE-2016-4421
all versions
epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote atta
5.9MEDIUM
 CVE-2016-4420
all versions
The NFS dissector in Wireshark 2.x before 2.0.2 allows remote attackers to cause a denial of service (application crash) via a cra
5.9MEDIUM
 CVE-2016-4419
all versions
epan/dissectors/packet-spice.c in the SPICE dissector in Wireshark 2.x before 2.0.2 mishandles capability data, which allows remot
5.9MEDIUM
 CVE-2016-4418
all versions
epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote atta
5.9MEDIUM
 CVE-2016-4417
all versions
Off-by-one error in epan/dissectors/packet-gsm_abis_oml.c in the GSM A-bis OML dissector in Wireshark 1.12.x before 1.12.10 and 2.
5.9MEDIUM
 CVE-2016-4416
all versions
epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.2 mishandles the Grouping subfield, wh
5.9MEDIUM
 CVE-2016-4415
all versions
wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 2.x before 2.0.2 incorrectly increases a certain octet count, which
5.9MEDIUM
 CVE-2016-4085
all versions
Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.12.x before 1.12.11 allows r
5.9MEDIUM
 CVE-2016-4084
all versions
Integer signedness error in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 allows remote a
5.9MEDIUM
 CVE-2016-4083
all versions
epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 does not ensure that data is available befo
5.9MEDIUM
 CVE-2016-4082
all versions
epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses the wro
5.9MEDIUM
 CVE-2016-4081
all versions
epan/dissectors/packet-iax2.c in the IAX2 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses an incorrect in
5.9MEDIUM
 CVE-2016-4080
all versions
epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 misparses timestamp
5.9MEDIUM
 CVE-2016-4079
all versions
epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not verify BER
5.9MEDIUM
 CVE-2016-4078
all versions
The IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not properly restrict element lists, whic
5.9MEDIUM
 CVE-2016-4077
all versions
epan/reassemble.c in TShark in Wireshark 2.0.x before 2.0.3 relies on incorrect special-case handling of truncated Tvb data struct
5.9MEDIUM
 CVE-2016-4076
all versions
epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 2.0.x before 2.0.3 does not properly initialize memory for se
5.9MEDIUM
 CVE-2016-4006
all versions
epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote
5.9MEDIUM
 CVE-2016-2532
all versions
The dissect_llrp_parameters function in epan/dissectors/packet-llrp.c in the LLRP dissector in Wireshark 1.12.x before 1.12.10 and
5.9MEDIUM
 CVE-2016-2531
all versions
Off-by-one error in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 al
5.9MEDIUM
 CVE-2016-2530
all versions
The dissct_rsl_ipaccess_msg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.10 and 2
5.9MEDIUM
 CVE-2016-2529
all versions
The iseries_check_file_type function in wiretap/iseries.c in the iSeries file parser in Wireshark 2.0.x before 2.0.2 does not cons
5.5MEDIUM
 CVE-2016-2528
all versions
The dissect_nhdr_extopt function in epan/dissectors/packet-lbmc.c in the LBMC dissector in Wireshark 2.0.x before 2.0.2 does not v
5.9MEDIUM
 CVE-2016-2527
all versions
wiretap/nettrace_3gpp_32_423.c in the 3GPP TS 32.423 Trace file parser in Wireshark 2.0.x before 2.0.2 does not ensure that a '\0'
5.5MEDIUM
 CVE-2016-2526
all versions
epan/dissectors/packet-hiqnet.c in the HiQnet dissector in Wireshark 2.0.x before 2.0.2 does not validate the data type, which all
5.9MEDIUM
 CVE-2016-2525
all versions
epan/dissectors/packet-http2.c in the HTTP/2 dissector in Wireshark 2.0.x before 2.0.2 does not limit the amount of header data, w
5.9MEDIUM
 CVE-2016-2524
all versions
epan/dissectors/packet-x509af.c in the X.509AF dissector in Wireshark 2.0.x before 2.0.2 mishandles the algorithm ID, which allows
5.9MEDIUM
 CVE-2016-2523
all versions
The dnp3_al_process_object function in epan/dissectors/packet-dnp.c in the DNP3 dissector in Wireshark 1.12.x before 1.12.10 and 2
5.9MEDIUM
 CVE-2016-2522
all versions
The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 2.0.x befor
5.9MEDIUM
 CVE-2016-2521
all versions
Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/wireshark_application.cpp in Wireshark 1.12.x befor
7.8HIGH
 CVE-2015-8742
all versions
The dissect_CPMSetBindings function in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.1 does
5.5MEDIUM
 CVE-2015-8741
all versions
The dissect_ppi function in epan/dissectors/packet-ppi.c in the PPI dissector in Wireshark 2.0.x before 2.0.1 does not initialize
5.5MEDIUM
 CVE-2015-8740
all versions
The dissect_tds7_colmetadata_token function in epan/dissectors/packet-tds.c in the TDS dissector in Wireshark 2.0.x before 2.0.1 d
5.3MEDIUM
 CVE-2015-8739
all versions
The ipmi_fmt_udpport function in epan/dissectors/packet-ipmi.c in the IPMI dissector in Wireshark 2.0.x before 2.0.1 improperly at
5.5MEDIUM
 CVE-2015-8738
all versions
The s7comm_decode_ud_cpu_szl_subfunc function in epan/dissectors/packet-s7comm_szl_ids.c in the S7COMM dissector in Wireshark 2.0.
5.5MEDIUM
 CVE-2015-8737
all versions
The mp2t_open function in wiretap/mp2t.c in the MP2T file parser in Wireshark 2.0.x before 2.0.1 does not validate the bit rate, w
5.5MEDIUM
 CVE-2015-8736
all versions
The mp2t_find_next_pcr function in wiretap/mp2t.c in the MP2T file parser in Wireshark 2.0.x before 2.0.1 does not reserve memory
5.5MEDIUM
 CVE-2015-8735
all versions
The get_value function in epan/dissectors/packet-btatt.c in the Bluetooth Attribute (aka BT ATT) dissector in Wireshark 2.0.x befo
5.5MEDIUM
 CVE-2015-8734
all versions
The dissect_nwp function in epan/dissectors/packet-nwp.c in the NWP dissector in Wireshark 2.0.x before 2.0.1 mishandles the packe
5.5MEDIUM
 CVE-2015-8733
all versions
The ngsniffer_process_record function in wiretap/ngsniffer.c in the Sniffer file parser in Wireshark 1.12.x before 1.12.9 and 2.0.
5.5MEDIUM
 CVE-2015-8732
all versions
The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general.c in the ZigBee ZCL dissector in Wire
5.5MEDIUM
 CVE-2015-8731
all versions
The dissct_rsl_ipaccess_msg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.9 and 2.
5.5MEDIUM
 CVE-2015-8730
all versions
epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the
5.5MEDIUM
 CVE-2015-8729
all versions
The ascend_seek function in wiretap/ascendtext.c in the Ascend file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.
5.5MEDIUM
 CVE-2015-8728
all versions
The Mobile Identity parser in (1) epan/dissectors/packet-ansi_a.c in the ANSI A dissector and (2) epan/dissectors/packet-gsm_a_com
5.5MEDIUM
 CVE-2015-8727
all versions
The dissect_rsvp_common function in epan/dissectors/packet-rsvp.c in the RSVP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.
5.5MEDIUM
 CVE-2015-8726
all versions
wiretap/vwr.c in the VeriWave file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate certain signa
5.5MEDIUM
 CVE-2015-8725
all versions
The dissect_diameter_base_framed_ipv6_prefix function in epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark
5.5MEDIUM
 CVE-2015-8724
all versions
The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and
5.5MEDIUM
 CVE-2015-8723
all versions
The AirPDcapPacketProcess function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x be
5.5MEDIUM
 CVE-2015-8722
all versions
epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the
5.5MEDIUM
 CVE-2015-8721
all versions
Buffer overflow in the tvb_uncompress function in epan/tvbuff_zlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allo
5.5MEDIUM
 CVE-2015-8720
all versions
The dissect_ber_GeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 an
5.5MEDIUM
 CVE-2015-8719
all versions
The dissect_dns_answer function in epan/dissectors/packet-dns.c in the DNS dissector in Wireshark 1.12.x before 1.12.9 mishandles
5.5MEDIUM
 CVE-2015-8718
all versions
Double free vulnerability in epan/dissectors/packet-nlm.c in the NLM dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before
5.5MEDIUM
 CVE-2015-8717
all versions
The dissect_sdp function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.12.x before 1.12.9 does not prevent u
5.5MEDIUM
 CVE-2015-8716
all versions
The init_t38_info_conv function in epan/dissectors/packet-t38.c in the T.38 dissector in Wireshark 1.12.x before 1.12.9 does not e
5.5MEDIUM
 CVE-2015-8715
all versions
epan/dissectors/packet-alljoyn.c in the AllJoyn dissector in Wireshark 1.12.x before 1.12.9 does not check for empty arguments, wh
5.5MEDIUM
 CVE-2015-8714
all versions
The dissect_dcom_OBJREF function in epan/dissectors/packet-dcom.c in the DCOM dissector in Wireshark 1.12.x before 1.12.9 does not
5.5MEDIUM
 CVE-2015-8713
all versions
epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not properly reserve memory for c
5.5MEDIUM
 CVE-2015-8712
all versions
The dissect_hsdsch_channel_info function in epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1
5.5MEDIUM
 CVE-2015-8711
all versions
epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate con
5.5MEDIUM
 CVE-2015-3182
all versions
epan/dissectors/packet-dec-dnart.c in the DECnet NSP/RT dissector in Wireshark 1.10.12 through 1.10.14 mishandles a certain strdup
5.5MEDIUM
 CVE-2015-7830
all versions
The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in Wireshark 1.12.x before 1.12.8 uses too many l
 CVE-2015-6249
all versions
The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before
 CVE-2015-6248
all versions
The ptvcursor_add function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whethe
 CVE-2015-6247
all versions
The dissect_openflow_tablemod_v5 function in epan/dissectors/packet-openflow_v5.c in the OpenFlow dissector in Wireshark 1.12.x be
 CVE-2015-6246
all versions
The dissect_wa_payload function in epan/dissectors/packet-waveagent.c in the WaveAgent dissector in Wireshark 1.12.x before 1.12.7
 CVE-2015-6245
all versions
epan/dissectors/packet-gsm_rlcmac.c in the GSM RLC/MAC dissector in Wireshark 1.12.x before 1.12.7 uses incorrect integer data typ
 CVE-2015-6244
all versions
The dissect_zbee_secure function in epan/dissectors/packet-zbee-security.c in the ZigBee dissector in Wireshark 1.12.x before 1.12
 CVE-2015-6243
all versions
The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings,
 CVE-2015-6242
all versions
The wmem_block_split_free_chunk function in epan/wmem/wmem_allocator_block.c in the wmem block allocator in the memory manager in
 CVE-2015-6241
all versions
The proto_tree_add_bytes_item function in epan/proto.c in the protocol-tree implementation in Wireshark 1.12.x before 1.12.7 does
 CVE-2015-4652
all versions
epan/dissectors/packet-gsm_a_dtap.c in the GSM DTAP dissector in Wireshark 1.12.x before 1.12.6 does not properly validate digit c
 CVE-2015-4651
all versions
The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before
 CVE-2015-3906
all versions
The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not pro
 CVE-2015-3815
all versions
The detect_version function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not check
 CVE-2015-3814
all versions
The (1) dissect_tfs_request and (2) dissect_tfs_response functions in epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissec
 CVE-2015-3813
all versions
The fragment_add_work function in epan/reassemble.c in the packet-reassembly feature in Wireshark 1.12.x before 1.12.5 does not pr
 CVE-2015-3812
all versions
Multiple memory leaks in the x11_init_protocol function in epan/dissectors/packet-x11.c in the X11 dissector in Wireshark 1.10.x b
 CVE-2015-3811
all versions
epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.14 and 1.12.x before 1.12.5 improperly refers to
 CVE-2015-3810
all versions
epan/dissectors/packet-websocket.c in the WebSocket dissector in Wireshark 1.12.x before 1.12.5 uses a recursive algorithm, which
 CVE-2015-3809
all versions
The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x before 1.12.5 does not p
 CVE-2015-3808
all versions
The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x before 1.12.5 does not r
 CVE-2015-2192
all versions
Integer overflow in the dissect_osd2_cdb_continuation function in epan/dissectors/packet-scsi-osd.c in the SCSI OSD dissector in W
 CVE-2015-2191
all versions
Integer overflow in the dissect_tnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.
 CVE-2015-2190
all versions
epan/proto.c in Wireshark 1.12.x before 1.12.4 does not properly handle integer data types greater than 32 bits in size, which all
 CVE-2015-2189
all versions
Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and
 CVE-2015-2188
all versions
epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly in
 CVE-2015-2187
all versions
The dissect_atn_cpdlc_heur function in asn1/atn-cpdlc/packet-atn-cpdlc-template.c in the ATN-CPDLC dissector in Wireshark 1.12.x b
 CVE-2015-0564
all versions
Buffer underflow in the ssl_decrypt_record function in epan/dissectors/packet-ssl-utils.c in Wireshark 1.10.x before 1.10.12 and 1
 CVE-2015-0563
all versions
epan/dissectors/packet-smtp.c in the SMTP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 uses an incorrect
 CVE-2015-0562
all versions
Multiple use-after-free vulnerabilities in epan/dissectors/packet-dec-dnart.c in the DEC DNA Routing Protocol dissector in Wiresha
 CVE-2015-0561
all versions
asn1/lpp/lpp.cnf in the LPP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 does not validate a certain inde
 CVE-2015-0560
all versions
The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before
 CVE-2015-0559
all versions
Multiple use-after-free vulnerabilities in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before 1.10.12
 CVE-2014-8714
all versions
The dissect_write_structured_field function in epan/dissectors/packet-tn5250.c in the TN5250 dissector in Wireshark 1.10.x before
 CVE-2014-8713
all versions
Stack-based buffer overflow in the build_expert_data function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wiresh
 CVE-2014-8712
all versions
The build_expert_data function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.10.x before 1.10.11 and 1
 CVE-2014-8711
all versions
Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x be
 CVE-2014-8710
all versions
The decompress_sigcomp_message function in epan/sigcomp-udvm.c in the SigComp UDVM dissector in Wireshark 1.10.x before 1.10.11 al
 CVE-2014-6432
all versions
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x
 CVE-2014-6431
all versions
Buffer overflow in the SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before
 CVE-2014-6430
all versions
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x
 CVE-2014-6429
all versions
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x
 CVE-2014-6428
all versions
The dissect_spdu function in epan/dissectors/packet-ses.c in the SES dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x befor
 CVE-2014-6427
all versions
Off-by-one error in the is_rtsp_request_or_reply function in epan/dissectors/packet-rtsp.c in the RTSP dissector in Wireshark 1.10
 CVE-2014-6426
all versions
The dissect_hip_tlv function in epan/dissectors/packet-hip.c in the HIP dissector in Wireshark 1.12.x before 1.12.1 does not prope
 CVE-2014-6425
all versions
The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshar
 CVE-2014-6424
all versions
The dissect_v9_v10_pdu_data function in epan/dissectors/packet-netflow.c in the Netflow dissector in Wireshark 1.10.x before 1.10.
 CVE-2014-6423
all versions
The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.
 CVE-2014-6422
all versions
The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attacke
 CVE-2014-6421
all versions
Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of
 CVE-2014-5165
all versions
The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.10.x befo
 CVE-2014-5164
all versions
The rlc_decode_li function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.10.x before 1.10.9 initializes a ce
 CVE-2014-5163
all versions
The APN decode functionality in (1) epan/dissectors/packet-gtp.c and (2) epan/dissectors/packet-gsm_a_gm.c in the GTP and GSM Mana
 CVE-2014-5162
all versions
The read_new_line function in wiretap/catapult_dct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does
 CVE-2014-5161
all versions
The dissect_log function in plugins/irda/packet-irda.c in the IrDA dissector in Wireshark 1.10.x before 1.10.9 does not properly s
 CVE-2014-4174
all versions
wiretap/libpcap.c in the libpcap file parser in Wireshark 1.10.x before 1.10.4 allows remote attackers to execute arbitrary code o
 CVE-2014-4020
all versions
The dissect_frame function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interpre
 CVE-2014-2907
all versions
The srtp_add_address function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not prop
 CVE-2014-2299
all versions
Buffer overflow in the mpeg_read function in wiretap/mpeg.c in the MPEG parser in Wireshark 1.8.x before 1.8.13 and 1.10.x before
 CVE-2014-2283
all versions
epan/dissectors/packet-rlc in the RLC dissector in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 uses inconsistent memory
 CVE-2014-2282
all versions
The dissect_protocol_data_parameter function in epan/dissectors/packet-m3ua.c in the M3UA dissector in Wireshark 1.10.x before 1.1
 CVE-2014-2281
all versions
The nfs_name_snoop_add_name function in epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.8.x before 1.8.13 and 1.1
 CVE-2013-7114
all versions
Multiple buffer overflows in the create_ntlmssp_v2_key function in epan/dissectors/packet-ntlmssp.c in the NTLMSSP v2 dissector in
 CVE-2013-7113
all versions
epan/dissectors/packet-bssgp.c in the BSSGP dissector in Wireshark 1.10.x before 1.10.4 incorrectly relies on a global variable, w
 CVE-2013-7112
all versions
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x b
 CVE-2013-6340
all versions
epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly dete
 CVE-2013-6339
all versions
The dissect_openwire_type function in epan/dissectors/packet-openwire.c in the OpenWire dissector in Wireshark 1.8.x before 1.8.11
 CVE-2013-6338
all versions
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x b
 CVE-2013-6337
all versions
Unspecified vulnerability in the NBAP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers
 CVE-2013-6336
all versions
The ieee802154_map_rec function in epan/dissectors/packet-ieee802154.c in the IEEE 802.15.4 dissector in Wireshark 1.8.x before 1.
 CVE-2013-5722
all versions
Unspecified vulnerability in the LDAP dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers
 CVE-2013-5721
all versions
The dissect_mq_rr function in epan/dissectors/packet-mq.c in the MQ dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1
 CVE-2013-5720
all versions
Buffer overflow in the RTPS dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a
 CVE-2013-5719
all versions
epan/dissectors/packet-assa_r3.c in the ASSA R3 dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote
 CVE-2013-5718
all versions
The dissect_nbap_T_dCH_ID function in epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.8.x before 1.8.10 and 1.1
 CVE-2013-5717
all versions
The Bluetooth HCI ACL dissector in Wireshark 1.10.x before 1.10.2 does not properly maintain a certain free list, which allows rem
 CVE-2013-4936
all versions
The IsDFP_Frame function in plugins/profinet/packet-pn-rt.c in the PROFINET Real-Time dissector in Wireshark 1.10.x before 1.10.1
 CVE-2013-4935
all versions
The dissect_per_length_determinant function in epan/dissectors/packet-per.c in the ASN.1 PER dissector in Wireshark 1.8.x before 1
 CVE-2013-4934
all versions
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 do
 CVE-2013-4933
all versions
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 do
 CVE-2013-4932
all versions
Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9
 CVE-2013-4931
all versions
epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop)
 CVE-2013-4930
all versions
The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB-CI dissector in Wireshark 1.8.x before 1.8.9 and
 CVE-2013-4929
all versions
The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x befo
 CVE-2013-4928
all versions
Integer signedness error in the dissect_headers function in epan/dissectors/packet-btobex.c in the Bluetooth OBEX dissector in Wir
 CVE-2013-4927
all versions
Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wires
 CVE-2013-4926
all versions
epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly de
 CVE-2013-4925
all versions
Integer signedness error in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin