Debian Wireshark vulnerabilities

694 known vulnerabilities affecting debian/wireshark.

Total CVEs

694

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL8HIGH129MEDIUM276LOW281

Vulnerabilities

Page 1 of 35

CVE-2026-3203MEDIUMCVSS 5.5fixed in wireshark 4.6.4-1 (forky)2026

CVE-2026-3203 [MEDIUM] CVE-2026-3203: wireshark - RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to ... RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service Scope: local bookworm: open bullseye: open forky: resolved (fixed in 4.6.4-1) sid: resolved (fixed in 4.6.4-1) trixie: resolved (fixed in 4.4.14-0+deb13u1)

debian

CVE-2026-0960MEDIUMCVSS 4.7fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2026

CVE-2026-0960 [MEDIUM] CVE-2026-0960: wireshark - HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial... HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.6.3-1) sid: resolved (fixed in 4.6.3-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2026-3201MEDIUMCVSS 4.7fixed in wireshark 4.6.4-1 (forky)2026

CVE-2026-3201 [MEDIUM] CVE-2026-3201: wireshark - USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4... USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service Scope: local bookworm: open bullseye: resolved forky: resolved (fixed in 4.6.4-1) sid: resolved (fixed in 4.6.4-1) trixie: resolved (fixed in 4.4.14-0+deb13u1)

debian

CVE-2026-0962LOWCVSS 5.3fixed in wireshark 4.6.3-1 (forky)2026

CVE-2026-0962 [MEDIUM] CVE-2026-0962: wireshark - SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4... SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.6.3-1) sid: resolved (fixed in 4.6.3-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2026-3202LOWCVSS 4.7fixed in wireshark 4.6.4-1 (forky)2026

CVE-2026-3202 [MEDIUM] CVE-2026-3202: wireshark - NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of ser... NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.6.4-1) sid: resolved (fixed in 4.6.4-1) trixie: resolved

debian

CVE-2026-0959LOWCVSS 5.3fixed in wireshark 4.6.3-1 (forky)2026

CVE-2026-0959 [MEDIUM] CVE-2026-0959: wireshark - IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.... IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.6.3-1) sid: resolved (fixed in 4.6.3-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2026-0961LOWCVSS 5.5fixed in wireshark 4.6.3-1 (forky)2026

CVE-2026-0961 [MEDIUM] CVE-2026-0961: wireshark - BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows den... BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.6.3-1) sid: resolved (fixed in 4.6.3-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2025-5601HIGHCVSS 7.8fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2025

CVE-2025-5601 [HIGH] CVE-2025-5601: wireshark - Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows d... Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.4.7-1) sid: resolved (fixed in 4.4.7-1) trixie: resolved (fixed in 4.4.7-1)

debian

CVE-2025-1492HIGHCVSS 7.8fixed in wireshark 4.4.4-1 (forky)2025

CVE-2025-1492 [HIGH] CVE-2025-1492: wireshark - Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0... Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file Scope: local bookworm: open bullseye: resolved forky: resolved (fixed in 4.4.4-1) sid: resolved (fixed in 4.4.4-1) trixie: resolved (fixed in 4.4.4-1)

debian

CVE-2025-9817HIGHCVSS 7.8fixed in wireshark 4.4.9-1 (forky)2025

CVE-2025-9817 [HIGH] CVE-2025-9817: wireshark - SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service Scope: local bookworm: open bullseye: resolved forky: resolved (fixed in 4.4.9-1) sid: resolved (fixed in 4.4.9-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2025-13499HIGHCVSS 7.8fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2025

CVE-2025-13499 [HIGH] CVE-2025-13499: wireshark - Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of se... Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.6.1-1) sid: resolved (fixed in 4.6.1-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2025-13945MEDIUMCVSS 5.5fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2025

CVE-2025-13945 [MEDIUM] CVE-2025-13945: wireshark - HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.6.2-1) sid: resolved (fixed in 4.6.2-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2025-13946MEDIUMCVSS 5.5fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2025

CVE-2025-13946 [MEDIUM] CVE-2025-13946: wireshark - MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 a... MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.6.2-1) sid: resolved (fixed in 4.6.2-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2025-11626MEDIUMCVSS 5.5fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2025

CVE-2025-11626 [MEDIUM] CVE-2025-11626: wireshark - MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 al... MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.6.0-1) sid: resolved (fixed in 4.6.0-1) trixie: resolved (fixed in 4.4.13-0+deb13u1)

debian

CVE-2025-13674LOWCVSS 5.5fixed in wireshark 4.6.1-1 (forky)2025

CVE-2025-13674 [MEDIUM] CVE-2025-13674: wireshark - BPv7 dissector crash in Wireshark 4.6.0 allows denial of service BPv7 dissector crash in Wireshark 4.6.0 allows denial of service Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.6.1-1) sid: resolved (fixed in 4.6.1-1) trixie: resolved

debian

CVE-2024-9781HIGHCVSS 7.8fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2024

CVE-2024-9781 [HIGH] CVE-2024-9781: wireshark - AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2... AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.4.1-1) sid: resolved (fixed in 4.4.1-1) trixie: resolved (fixed in 4.4.1-1)

debian

CVE-2024-2955HIGHCVSS 7.8fixed in wireshark 4.0.17-0+deb12u1 (bookworm)2024

CVE-2024-2955 [HIGH] CVE-2024-2955: wireshark - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows deni... T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.4-1) sid: resolved (fixed in 4.2.4-1) trixie: resolved (fixed in 4.2.4-1)

debian

CVE-2024-0208HIGHCVSS 7.8fixed in wireshark 4.0.17-0+deb12u1 (bookworm)2024

CVE-2024-0208 [HIGH] CVE-2024-0208: wireshark - GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 al... GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.2-1) sid: resolved (fixed in 4.2.2-1) trixie: resolved (fixed in 4.2.2-1)

debian

CVE-2024-0211HIGHCVSS 7.8fixed in wireshark 4.0.17-0+deb12u1 (bookworm)2024

CVE-2024-0211 [HIGH] CVE-2024-0211: wireshark - DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet in... DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.2-1) sid: resolved (fixed in 4.2.2-1) trixie: resolved (fixed in 4.2.2-1)

debian

CVE-2024-11596HIGHCVSS 7.8fixed in wireshark 3.4.16-0+deb11u2 (bullseye)2024

CVE-2024-11596 [HIGH] CVE-2024-11596: wireshark - ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denia... ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file Scope: local bookworm: open bullseye: resolved (fixed in 3.4.16-0+deb11u2) forky: resolved (fixed in 4.4.2-1) sid: resolved (fixed in 4.4.2-1) trixie: resolved (fixed in 4.4.2-1)

debian

1 / 35Next →