CVE-2023-6175

HIGH

Wireshark 3.6.0-3.6.18 and 4.0.0-4.0.10 - Denial of Service in NetScreen File Parser

Title source: llm
STIX 2.1

Description

NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file

Scores

CVSS v3 7.8
EPSS 0.0346
EPSS Percentile 87.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-120
Status published
Products (3)
wireshark/wireshark 3.6.0 - 3.6.18
Wireshark Foundation/Wireshark 3.6.0 - 3.6.19
Wireshark Foundation/Wireshark 4.0.0 - 4.0.11
Published Mar 26, 2024
Tracked Since Feb 18, 2026