CVE-2025-1492

High CVSS: 7.8

Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file

Vendor

Wireshark

Product

Wireshark

CWE

CWE-674

Yayın Tarihi

2025-02-20 02:15:38

Güncelleme

2025-04-10 20:03:01

Source Identifier

cve@gitlab.com

KEV Date Added

Kategoriler

CWE-674 Wireshark HIGH Wireshark 2025

Referanslar

https://gitlab.com/wireshark/wireshark/-/issues/20373 https://www.wireshark.org/security/wnpa-sec-2025-01.html

Benzer Kayıtlar

Medium

CVE-2026-3201

USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service

Medium

CVE-2026-3202

NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service

Medium

CVE-2026-3203

RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service

Medium

CVE-2026-0961

BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service

Medium

CVE-2026-0962

SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service

Medium

CVE-2026-0959

IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service