CVE-2025-1492

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-1492

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-1492.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-1492

Related

Published

2025-02-20T02:15:38Z

Modified

2025-04-11T09:54:43.788371Z

Downstream

SUSE-SU-2025:0754-1

openSUSE-SU-2025:14831-1

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file

References

Affected packages

Debian:12 / wireshark

Package

Name: wireshark
Purl: pkg:deb/debian/wireshark?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.0.3-1

4.0.5-1~exp1

4.0.6-1~deb12u1

4.0.6-1~exp1

4.0.6-1

4.0.7-1

4.0.8-1

4.0.10-1

4.0.11-1~deb12u1

4.0.11-1

4.0.17-0+deb12u1

4.2.0~rc3-1~exp1

4.2.0-1~exp0

4.2.0-1

4.2.2-1

4.2.2-1.1~exp1

4.2.2-1.1

4.2.4-1

4.2.5-1

4.2.5-2

4.2.6-1

4.4.0-0exp1

4.4.0-0exp2

4.4.0-1

4.4.1-1

4.4.2-1

4.4.3-1

4.4.4-1

4.4.5-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / wireshark

Package

Name: wireshark
Purl: pkg:deb/debian/wireshark?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.4-1

Affected versions

4.*

4.0.3-1

4.0.5-1~exp1

4.0.6-1~deb12u1

4.0.6-1~exp1

4.0.6-1

4.0.7-1

4.0.8-1

4.0.10-1

4.0.11-1~deb12u1

4.0.11-1

4.2.0~rc3-1~exp1

4.2.0-1~exp0

4.2.0-1

4.2.2-1

4.2.2-1.1~exp1

4.2.2-1.1

4.2.4-1

4.2.5-1

4.2.5-2

4.2.6-1

4.4.0-0exp1

4.4.0-0exp2

4.4.0-1

4.4.1-1

4.4.2-1

4.4.3-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Git / github.com/wireshark/wireshark

Affected ranges

Type: GIT
Repo: https://github.com/wireshark/wireshark
Events: Introduced

54eedfc63953c8180b5a9c60015917cce7a2548a

Last affected

40bbca02d283129cfa15983ec558be2a348f6b30

Introduced

009a163470b581c7d3ee66d89c819cef1f9e50fe

Last affected

66d7a52feb061b71cb6ea4a35acca78664f29590

Affected versions

v4.*

v4.2.0

v4.2.1

v4.2.10

v4.2.10rc0

v4.2.1rc0

v4.2.2

v4.2.2rc0

v4.2.3

v4.2.3rc0

v4.2.4

v4.2.4rc0

v4.2.5

v4.2.5rc0

v4.2.6

v4.2.6rc0

v4.2.7

v4.2.7rc0

v4.2.8

v4.2.8rc0

v4.2.9

v4.2.9rc0

v4.4.0

v4.4.1

v4.4.1rc0

v4.4.2

v4.4.2rc0

v4.4.3

v4.4.3rc0

wireshark-4.*

wireshark-4.2.0

wireshark-4.2.1

wireshark-4.2.10

wireshark-4.2.2

wireshark-4.2.3

wireshark-4.2.4

wireshark-4.2.5

wireshark-4.2.6

wireshark-4.2.7

wireshark-4.2.8

wireshark-4.2.9

wireshark-4.4.0

wireshark-4.4.1

wireshark-4.4.2

wireshark-4.4.3