Home > Vulnerability Database > CVE-2023-1161

Mend.io Vulnerability Database

CVE-2023-1161

Date: March 5, 2023

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

Language: C

Severity Score

6.3

Related Resources (10)

Url: https://lists.debian.org/debian-lts-announce/2023/04/msg00029.html

Url: https://www.debian.org/security/2023/dsa-5429

Url: https://www.wireshark.org/security/wnpa-sec-2023-08.html

Url: https://gitlab.com/wireshark/wireshark/-/issues/18839

Url: https://security.gentoo.org/glsa/202309-02

Url: https://security-tracker.debian.org/tracker/CVE-2023-1161

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-1161

Url: https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1161.json

Url: https://access.redhat.com/security/cve/CVE-2023-1161

Url: https://www.mend.io/vulnerability-database/CVE-2023-1161

Severity Score

6.3

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-120

CVSS v3.1

Base Score:	6.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2023-1161

Date: March 5, 2023

Language: C

Severity Score

Related Resources (10)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?