| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-19626 | 4.3 |
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.
|
24-08-2020 - 17:37 | 29-11-2018 - 04:29 | |
| CVE-2018-19625 | 4.3 |
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.
|
20-03-2020 - 01:15 | 29-11-2018 - 04:29 | |
| CVE-2018-19624 | 4.3 |
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.
|
20-03-2020 - 01:15 | 29-11-2018 - 04:29 | |
| CVE-2018-19628 | 5.0 |
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.
|
20-03-2020 - 01:15 | 29-11-2018 - 04:29 | |
| CVE-2018-19622 | 5.0 |
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.
|
20-03-2020 - 01:15 | 29-11-2018 - 04:29 | |
| CVE-2018-19627 | 5.0 |
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
|
20-03-2020 - 01:15 | 29-11-2018 - 04:29 | |
| CVE-2018-19623 | 5.0 |
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.
|
20-03-2020 - 01:15 | 29-11-2018 - 04:29 |