CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19625

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.1%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

Products affected by CVE-2018-19625

Wireshark » Wireshark » Version: 2.4.0

cpe:2.3:a:wireshark:wireshark:2.4.0
Wireshark » Wireshark » Version: 2.4.1

cpe:2.3:a:wireshark:wireshark:2.4.1
Wireshark » Wireshark » Version: 2.4.10

cpe:2.3:a:wireshark:wireshark:2.4.10
Wireshark » Wireshark » Version: 2.4.2

cpe:2.3:a:wireshark:wireshark:2.4.2
Wireshark » Wireshark » Version: 2.4.3

cpe:2.3:a:wireshark:wireshark:2.4.3
Wireshark » Wireshark » Version: 2.4.4

cpe:2.3:a:wireshark:wireshark:2.4.4
Wireshark » Wireshark » Version: 2.4.5

cpe:2.3:a:wireshark:wireshark:2.4.5
Wireshark » Wireshark » Version: 2.4.6

cpe:2.3:a:wireshark:wireshark:2.4.6
Wireshark » Wireshark » Version: 2.4.7

cpe:2.3:a:wireshark:wireshark:2.4.7
Wireshark » Wireshark » Version: 2.4.8

cpe:2.3:a:wireshark:wireshark:2.4.8
Wireshark » Wireshark » Version: 2.4.9

cpe:2.3:a:wireshark:wireshark:2.4.9
Wireshark » Wireshark » Version: 2.6.0

cpe:2.3:a:wireshark:wireshark:2.6.0
Wireshark » Wireshark » Version: 2.6.1

cpe:2.3:a:wireshark:wireshark:2.6.1
Wireshark » Wireshark » Version: 2.6.2

cpe:2.3:a:wireshark:wireshark:2.6.2
Wireshark » Wireshark » Version: 2.6.3

cpe:2.3:a:wireshark:wireshark:2.6.3
Wireshark » Wireshark » Version: 2.6.4

cpe:2.3:a:wireshark:wireshark:2.6.4
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19625

Products

Pricing

Contact Us