CVE-2023-0412

Summary

TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Affected Software

VendorProductVersion RangeStatus
Wireshark FoundationWireshark>=4.0.0, <4.0.3affected
Wireshark FoundationWireshark>=3.6.0, <3.6.11affected

Weaknesses

  • Uncontrolled recursion in Wireshark

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References