Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-13945

Опубликовано: 03 дек. 2025
Источник: redhat
CVSS3: 5.5
EPSS Низкий

Описание

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service

A flaw was found in the HTTP3 dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing an excessive consumption of CPU and memory resources, resulting in a denial of service.

Отчет

This vulnerability will cause a crash in Wireshark with no other security impact. Additionally, this issue can only be exploited when a specially crafted pcap file is processed. For these reasons, this flaw has been rated with a moderate severity.

Меры по смягчению последствий

If the HTTP3 protocol dissector is not being used, it can be disabled via the "Enabled Protocols" dialog box in the Wireshark GUI application. This will also disable the protocol dissector when using "tshark", the command line tool. See the links below for instructions to disable a protocol in Wireshark, specifically the "Control Protocol Dissection" section and the "disabled_protos" configuration file option. https://www.wireshark.org/docs/wsug_html_chunked/ChCustProtocolDissectionSection.html https://www.wireshark.org/docs/wsug_html_chunked/ChAppFilesConfigurationSection.html

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10wiresharkNot affected
Red Hat Enterprise Linux 6wiresharkOut of support scope
Red Hat Enterprise Linux 7wiresharkOut of support scope
Red Hat Enterprise Linux 8wiresharkNot affected
Red Hat Enterprise Linux 9wiresharkNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-770
https://bugzilla.redhat.com/show_bug.cgi?id=2418573wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark

EPSS

Процентиль: 20%
0.00065
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-13945

CVSS3: 5.5
ubuntu
4 месяца назад

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service

nvd логотип

CVE-2025-13945

CVSS3: 5.5
nvd
4 месяца назад

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service

debian логотип

CVE-2025-13945

CVSS3: 5.5
debian
4 месяца назад

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of se ...

github логотип

GHSA-2q7x-94rj-f68w

CVSS3: 5.5
github
4 месяца назад

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service

fstec логотип

BDU:2026-03608

CVSS3: 5.5
fstec
4 месяца назад

Уязвимость анализатора трафика компьютерных сетей Wireshark, связанная с ненадлежащим управлением последовательным распределением памяти, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 20%
0.00065
Низкий

5.5 Medium

CVSS3