Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Wireshark Foundation — Vulnerabilities & Security Advisories 128

Browse all 128 CVE security advisories affecting Wireshark Foundation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The Wireshark Foundation oversees the development and maintenance of Wireshark, the world’s most widely used network protocol analyzer. Primarily utilized by security professionals, network administrators, and law enforcement for traffic analysis and troubleshooting, the software captures and inspects data packets in real-time. Historically, its codebase has exhibited vulnerabilities ranging from buffer overflows and integer overflows to use-after-free errors, with several instances allowing remote code execution or denial of service. While the application itself is robust, the sheer volume of parsed protocols creates a large attack surface, leading to the current record of 128 Common Vulnerabilities and Exposures. Notable incidents have included critical flaws in dissectors for protocols like SMB and HTTP, which could be triggered by maliciously crafted network traffic. The Foundation actively addresses these issues through regular updates, emphasizing the importance of keeping the tool patched to mitigate risks associated with its deep packet inspection capabilities.

Top products by Wireshark Foundation: Wireshark editcap
CVE IDTitleCVSSSeverityPublished
CVE-2024-9781 Improper Handling of Missing Values in Wireshark — WiresharkCWE-230 7.8 High2024-10-10
CVE-2024-9780 Missing Initialization of a Variable in Wireshark — WiresharkCWE-456 7.8 High2024-10-10
CVE-2024-8645 Access of Uninitialized Pointer in Wireshark — WiresharkCWE-824 5.5 Medium2024-09-10
CVE-2024-8250 Expired Pointer Dereference in Wireshark — WiresharkCWE-825 7.8 High2024-08-28
CVE-2024-4855 Use After Free in editcap — editcapCWE-416 3.6 Low2024-05-14
CVE-2024-4854 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark — WiresharkCWE-835 6.4 Medium2024-05-14
CVE-2024-4853 Mismatched Memory Management Routines in editcap — editcapCWE-762 3.6 Low2024-05-14
CVE-2024-2955 Mismatched Memory Management Routines in Wireshark — WiresharkCWE-762 7.8 High2024-03-26
CVE-2023-6175 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') in Wireshark — WiresharkCWE-120 7.8 High2024-03-26
CVE-2024-0211 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark — WiresharkCWE-835 7.8 High2024-01-03
CVE-2024-0210 Uncontrolled Recursion in Wireshark — WiresharkCWE-674 7.8 High2024-01-03
CVE-2024-0209 NULL Pointer Dereference in Wireshark — WiresharkCWE-476 7.8 High2024-01-03
CVE-2024-0208 Improper Handling of Missing Values in Wireshark — WiresharkCWE-230 7.8 High2024-01-03
CVE-2024-0207 Out-of-bounds Read in Wireshark — WiresharkCWE-125 7.8 High2024-01-03
CVE-2023-6174 Out-of-bounds Read in Wireshark — WiresharkCWE-125 6.3 Medium2023-11-16
CVE-2023-5371 Memory Allocation with Excessive Size Value in Wireshark — WiresharkCWE-789 5.3 Medium2023-10-04
CVE-2023-2906 Wireshark CP2179 divide by zero — WiresharkCWE-369 7.5 -2023-08-25
CVE-2023-4513 Missing Release of Memory after Effective Lifetime in Wireshark — WiresharkCWE-401 5.3 Medium2023-08-24
CVE-2023-4512 Uncontrolled Recursion in Wireshark — WiresharkCWE-674 5.3 Medium2023-08-24
CVE-2023-4511 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark — WiresharkCWE-835 5.3 Medium2023-08-24
CVE-2023-3649 Buffer Over-read in Wireshark — WiresharkCWE-126 5.3 Medium2023-07-14
CVE-2023-3648 Mismatched Memory Management Routines in Wireshark — WiresharkCWE-762 5.3 Medium2023-07-14
CVE-2023-0667 Wireshark MSMMS parsing buffer overflow — WiresharkCWE-122 9.8 -2023-06-07
CVE-2023-0668 Wireshark IEEE-C37.118 parsing buffer overflow — WiresharkCWE-125 9.8 -2023-06-07
CVE-2023-0666 Wireshark RTPS Parsing Buffer Overflow — WiresharkCWE-122 9.8 -2023-06-07
CVE-2023-2952 Wireshark 安全漏洞 — Wireshark 5.3 Medium2023-05-30
CVE-2023-2879 Wireshark 安全漏洞 — Wireshark 6.3 Medium2023-05-26
CVE-2023-2858 Wireshark 缓冲区错误漏洞 — Wireshark 5.3 Medium2023-05-26
CVE-2023-2857 Wireshark 缓冲区错误漏洞 — Wireshark 5.3 Medium2023-05-26
CVE-2023-2856 Wireshark 缓冲区错误漏洞 — Wireshark 5.3 Medium2023-05-26

This page lists every published CVE security advisory associated with Wireshark Foundation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.