MEDIUM🇵🇱 Wersja polska

CVE-2023-3648

CVSS 5.3v3.1pub. 2023-07-14upd. 2025-11-03

Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
  • Wireshark

    APP
    Wireshark
    3.6.0 – 3.6.144.0.0 – 4.0.6
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2018-6836CRITICAL9.8ten sam produkt

The netmonrec_comment_destroy function in wiretap/netmon.c in Wireshark through 2.4.4 performs a free operatio...

CVE-2026-5656HIGH7.0ten sam produkt

Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and pos...

CVE-2026-5405HIGH7.8ten sam produkt

RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and poss...

CVE-2026-5403HIGH7.8ten sam produkt

SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code exe...

CVE-2026-5402HIGH8.8ten sam produkt

TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex...