Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-9817

Опубликовано: 03 сент. 2025
Источник: redhat
CVSS3: 5.5
EPSS Низкий

Описание

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service

A flaw was found in Wireshark’s SSH dissector, caused by a missing NULL check in key exchange parameter handling. This vulnerability can trigger a segmentation fault when processing malformed SSH traffic or crafted capture files, potentially causing the application to crash and resulting in a denial of service.

Отчет

This issue is considered Moderate rather than an Important flaw because its impact is limited to application availability and does not allow arbitrary code execution or information disclosure. The vulnerability leads to a segmentation fault in the SSH dissector, which can crash Wireshark or TShark, but only when the user opens a malicious capture file or analyzes traffic containing malformed SSH packets. Since exploitation requires user interaction (opening the file) or the ability to inject traffic into a monitored network, and the consequence is restricted to denial of service rather than compromising confidentiality or integrity, the severity is classified as Moderate.

Меры по смягчению последствий

Users should avoid opening packet captures from untrusted sources and restrict analysis to known, reliable traffic. Running Wireshark with non-privileged accounts or in a sandboxed environment can also help minimize the impact of a crash.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6wiresharkOut of support scope
Red Hat Enterprise Linux 7wiresharkNot affected
Red Hat Enterprise Linux 8wiresharkNot affected
Red Hat Enterprise Linux 9wiresharkNot affected
Red Hat Enterprise Linux 10wiresharkFixedRHSA-2026:171402.02.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportwiresharkFixedRHSA-2026:276316.02.2026

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=2392839Wireshark: NULL Pointer Dereference in Wireshark

EPSS

Процентиль: 9%
0.0003
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-9817

CVSS3: 7.8
ubuntu
7 месяцев назад

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service

nvd логотип

CVE-2025-9817

CVSS3: 7.8
nvd
7 месяцев назад

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service

debian логотип

CVE-2025-9817

CVSS3: 7.8
debian
7 месяцев назад

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of servi ...

suse-cvrf логотип

SUSE-SU-2025:03294-1

suse-cvrf
6 месяцев назад

Security update for wireshark

rocky логотип

RLSA-2026:1714

rocky
около 2 месяцев назад

Moderate: wireshark security update

EPSS

Процентиль: 9%
0.0003
Низкий

5.5 Medium

CVSS3