Description
Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
Related CPE's
a
wireshark
wireshark
2
References
https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0413.json
Third Party Advisory
https://gitlab.com/wireshark/wireshark/-/issues/18766
Issue TrackingPatchThird Party Advisory
https://www.wireshark.org/security/wnpa-sec-2023-03.html
Vendor Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
6.5 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2023-01-26T21:18:07.847
2 years agoLast modified
2023-02-09T00:16:00.223
2 years ago