CVE-2023-3648

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-3648

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3648.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-3648

Downstream

DEBIAN-CVE-2023-3648

DLA-3906-1

DSA-5559-1

OESA-2023-1488

SUSE-SU-2023:3252-1

UBUNTU-CVE-2023-3648

openSUSE-SU-2024:13067-1

Related

Published

2023-07-14T06:16:33.827Z

Modified

2025-12-03T04:41:02.208477Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVSS Calculator

Summary

Mismatched Memory Management Routines in Wireshark

Details

Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file

Database specific

{
    "cwe_ids": [
        "CWE-762"
    ]
}

References

Affected packages

Git / gitlab.com/wireshark/wireshark

Affected ranges

Type

GIT

Repo

https://gitlab.com/wireshark/wireshark

Events

Introduced

0cbe09cd796b2ea24c6069b76ea16df7f51cf67b

Fixed

0ad1823cc09011b4a03d9e8dba7e2fcebc936d82

Database specific

{
    "versions": [
        {
            "introduced": "4.0.0"
        },
        {
            "fixed": "4.0.7"
        }
    ]
}

Type

GIT

Repo

https://gitlab.com/wireshark/wireshark

Events

Introduced

3a34e44d02c9c91f9f851bd6f29ff4505131b127

Fixed

ac38b4d13cb67d5738982d3dfe503ca58e787c0e

Database specific

{
    "versions": [
        {
            "introduced": "3.6.0"
        },
        {
            "fixed": "3.6.15"
        }
    ]
}

Affected versions

v3.*

v3.6.0

v3.6.1

v3.6.10

v3.6.10rc0

v3.6.11

v3.6.11rc0

v3.6.12

v3.6.12rc0

v3.6.13

v3.6.13rc0

v3.6.14

v3.6.14rc0

v3.6.15rc0

v3.6.1rc0

v3.6.2

v3.6.2rc0

v3.6.3

v3.6.3rc0

v3.6.4

v3.6.4rc0

v3.6.5

v3.6.5rc0

v3.6.6

v3.6.6rc0

v3.6.7

v3.6.7rc0

v3.6.8

v3.6.8rc0

v3.6.9

v3.6.9rc0

v4.*

v4.0.0

v4.0.1

v4.0.1rc0

v4.0.2

v4.0.2rc0

v4.0.3

v4.0.3rc0

v4.0.4

v4.0.4rc0

v4.0.5

v4.0.5rc0

v4.0.6

v4.0.6rc0

v4.0.7rc0

wireshark-3.*

wireshark-3.6.0

wireshark-3.6.1

wireshark-3.6.10

wireshark-3.6.11

wireshark-3.6.12

wireshark-3.6.13

wireshark-3.6.14

wireshark-3.6.2

wireshark-3.6.3

wireshark-3.6.4

wireshark-3.6.5

wireshark-3.6.6

wireshark-3.6.7

wireshark-3.6.8

wireshark-3.6.9

wireshark-4.*

wireshark-4.0.0

wireshark-4.0.1

wireshark-4.0.2

wireshark-4.0.3

wireshark-4.0.4

wireshark-4.0.5

wireshark-4.0.6

Git / github.com/wireshark/wireshark

Affected ranges

Type: GIT
Repo: https://github.com/wireshark/wireshark
Events: Introduced

3a34e44d02c9c91f9f851bd6f29ff4505131b127

Last affected

83f40263b97ea6e41587240bbef8e0e467e55ea7

Introduced

0cbe09cd796b2ea24c6069b76ea16df7f51cf67b

Last affected

ac2f5a01286addcb34ffb204e1eeb5fd8ccdb85c

Affected versions

v3.*

v3.6.0

v3.6.1

v3.6.10

v3.6.10rc0

v3.6.11

v3.6.11rc0

v3.6.12

v3.6.12rc0

v3.6.13

v3.6.13rc0

v3.6.14

v3.6.14rc0

v3.6.1rc0

v3.6.2

v3.6.2rc0

v3.6.3

v3.6.3rc0

v3.6.4

v3.6.4rc0

v3.6.5

v3.6.5rc0

v3.6.6

v3.6.6rc0

v3.6.7

v3.6.7rc0

v3.6.8

v3.6.8rc0

v3.6.9

v3.6.9rc0

v4.*

v4.0.0

v4.0.1

v4.0.1rc0

v4.0.2

v4.0.2rc0

v4.0.3

v4.0.3rc0

v4.0.4

v4.0.4rc0

v4.0.5

v4.0.5rc0

v4.0.6

v4.0.6rc0

wireshark-3.*

wireshark-3.6.0

wireshark-3.6.1

wireshark-3.6.10

wireshark-3.6.11

wireshark-3.6.12

wireshark-3.6.13

wireshark-3.6.14

wireshark-3.6.2

wireshark-3.6.3

wireshark-3.6.4

wireshark-3.6.5

wireshark-3.6.6

wireshark-3.6.7

wireshark-3.6.8

wireshark-3.6.9

wireshark-4.*

wireshark-4.0.0

wireshark-4.0.1

wireshark-4.0.2

wireshark-4.0.3

wireshark-4.0.4

wireshark-4.0.5

wireshark-4.0.6