KLA20164
Multiple vulnerabilities in Wireshark

Обновлено: 16/01/2023
Дата обнаружения
07/12/2022
Уровень угрозы
Warning
Описание

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. Denial of service vulnerability in BPv6, OpenFlow, and Kafka protocol dissectors can be exploited to cause denial of service.
  2. Denial of service vulnerability in Kafka dissector can be exploited to cause denial of service.
Пораженные продукты

Wireshark 3.6.x earlier than 3.6.10
Wireshark 4.0.x earlier than 4.0.2

Решение

Update to the latest version
Download Wireshark

Первичный источник обнаружения
Kafka dissector memory exhaustion.
Multiple dissector infinite loops
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
Wireshark
Узнай статистику распространения уязвимостей в твоем регионе