Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-8732Improper Input Validation in Wireshark

CWE-20Improper Input ValidationCWE-125Out-of-bounds Read10 documents8 sources
Severity
5.5MEDIUMNVD
EPSS
1.0%
top 22.96%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
WiresharkDebian Wireshark
Timeline
PublishedJan 4
Latest updateOct 23

Description

The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general.c in the ZigBee ZCL dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the Total Profile Number field, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

debiandebian/wireshark< wireshark 2.0.1+g59ea380-1 (bookworm)
Debianwireshark/wireshark< 2.0.1+g59ea380-1+3
NVDwireshark/wireshark10 versions+9

🔴Vulnerability Details

2
GHSA
GHSA-mrgx-cr9j-6gwv: The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general2022-05-17
OSV
CVE-2015-8732: The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general2016-01-04

💥Exploits & PoCs

1
Exploit-DB
Wireshark - dissect_zcl_pwr_prof_pwrprofstatersp Static Out-of-Bounds Read2015-12-16

📋Vendor Advisories

2
Red Hat
wireshark: ZigBee ZCL dissector crash (wnpa-sec-2015-50)2015-12-29
Debian
CVE-2015-8732: wireshark - The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee...2015

📄Research Papers

3
arXiv
Mission Aware Cyber-physical Security2025-10-23
arXiv
Data Driven Vulnerability Exploration for Design Phase System Analysis2019-09-06
arXiv
A Model-Based Approach to Security Analysis for Cyber-Physical Systems2018-06-10

💬Community

1
Bugzilla
CVE-2015-8732 wireshark: ZigBee ZCL dissector crash (wnpa-sec-2015-50)2016-01-06