CVE-2023-1993

Summary

LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

Affected Software

VendorProductVersion RangeStatus
Wireshark FoundationWireshark>=4.0.0, <4.0.5affected
Wireshark FoundationWireshark>=3.6.0, <3.6.13affected

Weaknesses

  • Excessive iteration in Wireshark

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References