CVE-2018-18225

Опубликовано: 10 окт. 2018

Источник: redhat

CVSS3: 5.3

EPSS Низкий

Описание

In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	wireshark	Not affected
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=1642913wireshark: CoAP dissector crash

EPSS

Процентиль: 78%

0.01179

Низкий

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2018-18225

CVSS3: 7.5

ubuntu

больше 7 лет назад

In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed.

CVE-2018-18225

CVSS3: 7.5

nvd

больше 7 лет назад

In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed.

CVE-2018-18225

CVSS3: 7.5

debian

больше 7 лет назад

In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was ...

GHSA-m265-hw72-834q

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed.

BDU:2019-00925

CVSS3: 7.5

fstec

больше 7 лет назад

Уязвимость CoAP диссектора анализатора трафика компьютерных сетей Wireshark, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 78%

0.01179

Низкий

5.3 Medium

CVSS3