CVE-2023-0668

Summary

Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.

Affected Software

VendorProductVersion RangeStatus
Wireshark FoundationWireshark4.0.0 <= 4.0.5affected
Wireshark FoundationWireshark4.0.6unaffected
Wireshark FoundationWireshark3.6.0 <= 3.6.13affected
Wireshark FoundationWireshark3.6.14unaffected

Weaknesses

  • CWE-125: CWE-125 Out-of-bounds Read

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References