CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-13766

In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in plugins/profinet/packet-dcerpc-pn-io.c by adding string validation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2017-13766

Wireshark » Wireshark » Version: 2.0.0

cpe:2.3:a:wireshark:wireshark:2.0.0
Wireshark » Wireshark » Version: 2.0.1

cpe:2.3:a:wireshark:wireshark:2.0.1
Wireshark » Wireshark » Version: 2.0.10

cpe:2.3:a:wireshark:wireshark:2.0.10
Wireshark » Wireshark » Version: 2.0.11

cpe:2.3:a:wireshark:wireshark:2.0.11
Wireshark » Wireshark » Version: 2.0.12

cpe:2.3:a:wireshark:wireshark:2.0.12
Wireshark » Wireshark » Version: 2.0.13

cpe:2.3:a:wireshark:wireshark:2.0.13
Wireshark » Wireshark » Version: 2.0.2

cpe:2.3:a:wireshark:wireshark:2.0.2
Wireshark » Wireshark » Version: 2.0.3

cpe:2.3:a:wireshark:wireshark:2.0.3
Wireshark » Wireshark » Version: 2.0.4

cpe:2.3:a:wireshark:wireshark:2.0.4
Wireshark » Wireshark » Version: 2.0.5

cpe:2.3:a:wireshark:wireshark:2.0.5
Wireshark » Wireshark » Version: 2.0.6

cpe:2.3:a:wireshark:wireshark:2.0.6
Wireshark » Wireshark » Version: 2.0.7

cpe:2.3:a:wireshark:wireshark:2.0.7
Wireshark » Wireshark » Version: 2.0.8

cpe:2.3:a:wireshark:wireshark:2.0.8
Wireshark » Wireshark » Version: 2.0.9

cpe:2.3:a:wireshark:wireshark:2.0.9
Wireshark » Wireshark » Version: 2.2.0

cpe:2.3:a:wireshark:wireshark:2.2.0
Wireshark » Wireshark » Version: 2.2.1

cpe:2.3:a:wireshark:wireshark:2.2.1
Wireshark » Wireshark » Version: 2.2.2

cpe:2.3:a:wireshark:wireshark:2.2.2
Wireshark » Wireshark » Version: 2.2.3

cpe:2.3:a:wireshark:wireshark:2.2.3
Wireshark » Wireshark » Version: 2.2.4

cpe:2.3:a:wireshark:wireshark:2.2.4
Wireshark » Wireshark » Version: 2.2.5

cpe:2.3:a:wireshark:wireshark:2.2.5
Wireshark » Wireshark » Version: 2.2.6

cpe:2.3:a:wireshark:wireshark:2.2.6
Wireshark » Wireshark » Version: 2.2.7

cpe:2.3:a:wireshark:wireshark:2.2.7
Wireshark » Wireshark » Version: 2.4.0

cpe:2.3:a:wireshark:wireshark:2.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-13766

Products

Pricing

Contact Us