VDB
CISA-2023-6174
CISA-2023-6174
PUBLISHED
CVSS 6.3 MEDIUM
Reported by GitLab · Published November 16, 2023
SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted capture file
Risk Scores
CVSS 3.1
6.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wireshark Foundation | Wireshark | 4.0.0 |
| Wireshark Foundation | Wireshark | 4.0.0, 4.0.0, 4.0.0 |
Timeline
- Nov 16, 2023 CVE Published
- Jun 11, 2025 CVE Updated
- Mar 28, 2026 Distribution Patch
References
- GitLab Issue #19369 issue-tracking
- https://www.debian.org/security/2023/dsa-5559 url
- https://security.gentoo.org/glsa/202402-09 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/34DBP5P2RHQ7XUABPANYYMOGV5KS6VEP/ url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MADSCHKZSCKQ5NLIX3UMOIJD2JZ65L4V/ url