CVE-2023-0415

Summary

iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Affected Software

VendorProductVersion RangeStatus
Wireshark FoundationWireshark>=4.0.0, <4.0.3affected
Wireshark FoundationWireshark>=3.6.0, <3.6.11affected

Weaknesses

  • Null pointer dereference in Wireshark

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References