| Max CVSS | 5.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-7417 | 5.0 |
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the IPMI dissector could crash. This was addressed in epan/dissectors/packet-ipmi-picmg.c by adding support for crafted packets that lack an IPMI header.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7419 | 5.0 |
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7335 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7337 | 5.0 |
In Wireshark 2.4.0 to 2.4.4, the DOCSIS protocol dissector could crash. This was addressed in plugins/docsis/packet-docsis.c by removing the recursive algorithm that had been used for concatenated PDUs.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7420 | 5.0 |
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by adding a block-size check for sysdig event blocks.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7323 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7334 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the UMTS MAC dissector could crash. This was addressed in epan/dissectors/packet-umts_mac.c by rejecting a certain reserved value.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7418 | 5.0 |
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by correcting the extraction of the length value.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7336 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer.
|
24-08-2020 - 17:37 | 23-02-2018 - 22:29 | |
| CVE-2018-7322 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound.
|
03-10-2019 - 00:03 | 23-02-2018 - 22:29 | |
| CVE-2018-7324 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type.
|
03-10-2019 - 00:03 | 23-02-2018 - 22:29 | |
| CVE-2018-7332 | 5.0 |
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by validating a length.
|
03-10-2019 - 00:03 | 23-02-2018 - 22:29 |