Vulnerability-Lookup

CVE-2023-2952 (GCVE-0-2023-2952)

Vulnerability from cvelistv5 – Published: 2023-05-30 00:00 – Updated: 2025-11-03 21:47

Summary

XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file

Severity

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

CWE

Loop with unreachable exit condition ('infinite loop') in Wireshark

Assigner

GitLab

References

6 references

URL	Tags
https://www.wireshark.org/security/wnpa-sec-2023-…
https://gitlab.com/wireshark/wireshark/-/issues/19100
https://gitlab.com/gitlab-org/cves/-/blob/master/…
https://lists.debian.org/debian-lts-announce/2023…	mailing-list
https://www.debian.org/security/2023/dsa-5429	vendor-advisory
https://security.gentoo.org/glsa/202309-02	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Wireshark Foundation	Wireshark	Affected: >=4.0.0, <4.0.6 Affected: >=3.6.0, <3.6.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T21:47:56.615Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.wireshark.org/security/wnpa-sec-2023-20.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.com/wireshark/wireshark/-/issues/19100"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2952.json"
          },
          {
            "name": "[debian-lts-announce] 20230603 [SECURITY] [DLA 3443-1] wireshark security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html"
          },
          {
            "name": "DSA-5429",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5429"
          },
          {
            "name": "GLSA-202309-02",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-02"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-2952",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-13T19:59:47.786061Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-835",
                "description": "CWE-835 Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-01-13T20:00:08.791Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Wireshark",
          "vendor": "Wireshark Foundation",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e=4.0.0, \u003c4.0.6"
            },
            {
              "status": "affected",
              "version": "\u003e=3.6.0, \u003c3.6.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Loop with unreachable exit condition (\u0027infinite loop\u0027) in Wireshark",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T06:06:16.682Z",
        "orgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a",
        "shortName": "GitLab"
      },
      "references": [
        {
          "url": "https://www.wireshark.org/security/wnpa-sec-2023-20.html"
        },
        {
          "url": "https://gitlab.com/wireshark/wireshark/-/issues/19100"
        },
        {
          "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2952.json"
        },
        {
          "name": "[debian-lts-announce] 20230603 [SECURITY] [DLA 3443-1] wireshark security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html"
        },
        {
          "name": "DSA-5429",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.debian.org/security/2023/dsa-5429"
        },
        {
          "name": "GLSA-202309-02",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-02"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a",
    "assignerShortName": "GitLab",
    "cveId": "CVE-2023-2952",
    "datePublished": "2023-05-30T00:00:00.000Z",
    "dateReserved": "2023-05-29T00:00:00.000Z",
    "dateUpdated": "2025-11-03T21:47:56.615Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-2952",
      "date": "2026-05-29",
      "epss": "0.00031",
      "percentile": "0.09558"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-2952\",\"sourceIdentifier\":\"cve@gitlab.com\",\"published\":\"2023-05-30T23:15:09.887\",\"lastModified\":\"2025-11-03T22:16:08.760\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file\"},{\"lang\":\"es\",\"value\":\"El bucle infinito del disector XRA en Wireshark 4.0.0 a 4.0.5 y 3.6.0 a 3.6.13 permite la denegaci\u00f3n de servicio mediante la inyecci\u00f3n de paquetes o un archivo de captura manipulado\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"cve@gitlab.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":1.8,\"impactScore\":3.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-835\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-835\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.6.0\",\"versionEndExcluding\":\"3.6.14\",\"matchCriteriaId\":\"CED49BFD-0350-4790-9D15-35875AEE4F00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndExcluding\":\"4.0.6\",\"matchCriteriaId\":\"FBA0E5F8-10A3-4294-95A8-6CB594C4DADE\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46D69DCC-AE4D-4EA5-861C-D60951444C6C\"}]}]}],\"references\":[{\"url\":\"https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2952.json\",\"source\":\"cve@gitlab.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://gitlab.com/wireshark/wireshark/-/issues/19100\",\"source\":\"cve@gitlab.com\",\"tags\":[\"Exploit\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html\",\"source\":\"cve@gitlab.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202309-02\",\"source\":\"cve@gitlab.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5429\",\"source\":\"cve@gitlab.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.wireshark.org/security/wnpa-sec-2023-20.html\",\"source\":\"cve@gitlab.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2952.json\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://gitlab.com/wireshark/wireshark/-/issues/19100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202309-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5429\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.wireshark.org/security/wnpa-sec-2023-20.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.wireshark.org/security/wnpa-sec-2023-20.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://gitlab.com/wireshark/wireshark/-/issues/19100\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2952.json\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html\", \"name\": \"[debian-lts-announce] 20230603 [SECURITY] [DLA 3443-1] wireshark security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5429\", \"name\": \"DSA-5429\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202309-02\", \"name\": \"GLSA-202309-02\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T21:47:56.615Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-2952\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-13T19:59:47.786061Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-835\", \"description\": \"CWE-835 Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-13T19:59:59.028Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.3, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"Wireshark Foundation\", \"product\": \"Wireshark\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e=4.0.0, \u003c4.0.6\"}, {\"status\": \"affected\", \"version\": \"\u003e=3.6.0, \u003c3.6.14\"}]}], \"references\": [{\"url\": \"https://www.wireshark.org/security/wnpa-sec-2023-20.html\"}, {\"url\": \"https://gitlab.com/wireshark/wireshark/-/issues/19100\"}, {\"url\": \"https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2952.json\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html\", \"name\": \"[debian-lts-announce] 20230603 [SECURITY] [DLA 3443-1] wireshark security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5429\", \"name\": \"DSA-5429\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202309-02\", \"name\": \"GLSA-202309-02\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Loop with unreachable exit condition (\u0027infinite loop\u0027) in Wireshark\"}]}], \"providerMetadata\": {\"orgId\": \"ceab7361-8a18-47b1-92ba-4d7d25f6715a\", \"shortName\": \"GitLab\", \"dateUpdated\": \"2023-09-17T06:06:16.682Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-2952\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-03T21:47:56.615Z\", \"dateReserved\": \"2023-05-29T00:00:00.000Z\", \"assignerOrgId\": \"ceab7361-8a18-47b1-92ba-4d7d25f6715a\", \"datePublished\": \"2023-05-30T00:00:00.000Z\", \"assignerShortName\": \"GitLab\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

WID-SEC-W-2023-1300

Vulnerability from csaf_certbund - Published: 2023-05-24 22:00 - Updated: 2024-09-29 22:00

Summary

Wireshark: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Wireshark (früher Ethereal) ist eine Software zum Mitschneiden von Netzwerkverkehr und zur Analyse von Netzwerkprotokollen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Wireshark ausnutzen, um einen Denial of Service Angriff durchzuführen und beliebigen Code auszuführen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2023-0666

In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung bösartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies führt zu Abstürzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-0667

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-0668

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2854

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2855

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2856

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2857

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2858

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2879

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

CVE-2023-2952

Affected products

Known affected 7 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Open Source Wireshark <3.6.14 Open Source / Wireshark		<3.6.14
Open Source Wireshark <4.0.6 Open Source / Wireshark		<4.0.6

References

17 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.wireshark.org/lists/wireshark-announc…	external
https://www.wireshark.org/lists/wireshark-announc…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.debian.org/debian-lts-announce/2023…	external
https://gitlab.com/wireshark/wireshark/-/issues/19086	external
https://github.com/advisories/GHSA-m7h5-4hfx-r2mh	external
https://lists.debian.org/debian-security-announce…	external
https://alas.aws.amazon.com/AL2/ALAS-2023-2113.html	external
https://alas.aws.amazon.com/AL2/ALAS-2023-2187.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://security.gentoo.org/glsa/202309-02	external
https://access.redhat.com/errata/RHSA-2023:6469	external
https://access.redhat.com/errata/RHSA-2023:7015	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.debian.org/debian-lts-announce/2024…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Wireshark (fr\u00fcher Ethereal) ist eine Software zum Mitschneiden von Netzwerkverkehr und zur Analyse von Netzwerkprotokollen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Wireshark ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren und beliebigen Code auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1300 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1300.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1300 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1300"
      },
      {
        "category": "external",
        "summary": "Wireshark Security Advisory vom 2023-05-24",
        "url": "https://www.wireshark.org/lists/wireshark-announce/202305/msg00000.html"
      },
      {
        "category": "external",
        "summary": "Wireshark Security Advisory vom 2023-05-24",
        "url": "https://www.wireshark.org/lists/wireshark-announce/202305/msg00001.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:2320-1 vom 2023-05-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-May/015018.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3443 vom 2023-06-03",
        "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00004.html"
      },
      {
        "category": "external",
        "summary": "PoCvom 2023-05-24",
        "url": "https://gitlab.com/wireshark/wireshark/-/issues/19086"
      },
      {
        "category": "external",
        "summary": "Github Advisory vom 2023-05-24",
        "url": "https://github.com/advisories/GHSA-m7h5-4hfx-r2mh"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5429 vom 2023-06-15",
        "url": "https://lists.debian.org/debian-security-announce/2023/msg00120.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2023-2113 vom 2023-07-20",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2113.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2023-2187 vom 2023-08-09",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2187.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:3252-1 vom 2023-08-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-August/015828.html"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202309-02 vom 2023-09-17",
        "url": "https://security.gentoo.org/glsa/202309-02"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6469 vom 2023-11-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:6469"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7015 vom 2023-11-15",
        "url": "https://access.redhat.com/errata/RHSA-2023:7015"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3165-1 vom 2024-09-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019395.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3906 vom 2024-09-30",
        "url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Wireshark: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-09-29T22:00:00.000+00:00",
      "generator": {
        "date": "2024-09-30T11:14:51.560+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2023-1300",
      "initial_release_date": "2023-05-24T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-05-24T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-05-29T22:00:00.000+00:00",
          "number": "2",
          "summary": "CVE\u0027s erg\u00e4nzt"
        },
        {
          "date": "2023-05-30T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-06-04T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-06-06T22:00:00.000+00:00",
          "number": "5",
          "summary": "Schwachstelle hinzugef\u00fcgt, PoC hinzugef\u00fcgt, Bewertung ge\u00e4ndert"
        },
        {
          "date": "2023-06-15T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-07-20T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-08-08T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-09-17T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2023-11-07T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-11-14T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-09T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-29T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "13"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c3.6.14",
                "product": {
                  "name": "Open Source Wireshark \u003c3.6.14",
                  "product_id": "T027870"
                }
              },
              {
                "category": "product_version",
                "name": "3.6.14",
                "product": {
                  "name": "Open Source Wireshark 3.6.14",
                  "product_id": "T027870-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:wireshark:wireshark:3.6.14"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.0.6",
                "product": {
                  "name": "Open Source Wireshark \u003c4.0.6",
                  "product_id": "T027871"
                }
              },
              {
                "category": "product_version",
                "name": "4.0.6",
                "product": {
                  "name": "Open Source Wireshark 4.0.6",
                  "product_id": "T027871-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:wireshark:wireshark:4.0.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Wireshark"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-0666",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-0666"
    },
    {
      "cve": "CVE-2023-0667",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-0667"
    },
    {
      "cve": "CVE-2023-0668",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-0668"
    },
    {
      "cve": "CVE-2023-2854",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2854"
    },
    {
      "cve": "CVE-2023-2855",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2855"
    },
    {
      "cve": "CVE-2023-2856",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2856"
    },
    {
      "cve": "CVE-2023-2857",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2857"
    },
    {
      "cve": "CVE-2023-2858",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2858"
    },
    {
      "cve": "CVE-2023-2879",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2879"
    },
    {
      "cve": "CVE-2023-2952",
      "notes": [
        {
          "category": "description",
          "text": "In Wireshark existieren mehrere Schwachstellen. Diese treten bei der Verarbeitung b\u00f6sartiger Pakete in folgenden Dissektoren und Parsern auf: Candump log file parser, BLF file parser, GDSDB dissector, NetScaler file parser, VMS TCPIPtrace file parser, RTPS dissector und IEEE C37.118 Synchrophasor dissector. Dies f\u00fchrt zu Abst\u00fcrzen und Endlosschleifen der entsprechenden Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen und beliebigen Code auszuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "398363",
          "T012167",
          "T027870",
          "T027871"
        ]
      },
      "release_date": "2023-05-24T22:00:00.000+00:00",
      "title": "CVE-2023-2952"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-2952 (GCVE-0-2023-2952)

WID-SEC-W-2023-1300

Tags

Sightings

Nomenclature