Skip to main content
CVE-2013-2487 HIGH This Week

epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Debian Linux Opensuse Wireshark
NVD
CVSS 2.0
7.8
EPSS
3.6%
CVE-2013-1153 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the web interface in Cisco Prime Infrastructure allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCue84676. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Cisco Prime Infrastructure
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2013-2486 MEDIUM This Month

The dissect_diagnosticrequest function in epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses an incorrect integer data. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Debian Linux Opensuse Wireshark
NVD
CVSS 2.0
6.1
EPSS
1.6%
CVE-2013-2476 MEDIUM This Month

The dissect_hartip function in epan/dissectors/packet-hartip.c in the HART/IP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Wireshark Opensuse
NVD
CVSS 2.0
6.1
EPSS
0.8%
CVE-2013-2485 MEDIUM This Month

The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Debian Linux Opensuse Wireshark
NVD
CVSS 2.0
6.1
EPSS
0.7%
CVE-2013-2482 MEDIUM This Month

The AMPQ dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Wireshark Opensuse
NVD
CVSS 2.0
6.1
EPSS
0.5%
CVE-2013-2488 MEDIUM This Month

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Wireshark Debian Linux Opensuse
NVD
CVSS 2.0
5.0
EPSS
3.6%
CVE-2013-1154 MEDIUM This Month

The Cisco Small Business 200 Series Smart Switch 1.2.7.76 and earlier, Small Business 300 Series Managed Switch 1.2.7.76 and earlier, and Small Business 500 Series Stackable Managed Switch 1.2.7.76. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco 200 Series Smart Switches 300 Series Managed Switches 200 Series Smart Switches Software +1
NVD
CVSS 2.0
5.0
EPSS
0.5%
CVE-2013-0151 MEDIUM This Month

The do_hvm_op function in xen/arch/x86/hvm/hvm.c in Xen 4.2.x on the x86_32 platform does not prevent HVM_PARAM_NESTEDHVM (aka nested virtualization) operations, which allows guest OS users to cause. Rated medium severity (CVSS 4.6). No vendor patch available.

Privilege Escalation Denial Of Service Xen
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2013-2493 MEDIUM This Month

The Hook_Terminate function in chrome_frame/protocol_sink_wrap.cc in the Google Chrome Frame plugin before 26.0.1410.28 for Internet Explorer does not properly handle attach tab requests, which. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Google Chrome Frame Chrome
NVD
CVSS 2.0
4.3
EPSS
0.8%
CVE-2012-5053 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the Receiver Web User Interface on Trimble Infrastructure GNSS Series Receivers NetR3, NetR5, NetR8, and NetR9 before 4.70, and NetRS before 1.3-2, allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Infrastructure Gnss Series Receiver Netr3 Infrastructure Gnss Series Receiver Netr5 Infrastructure Gnss Series Receiver Netr8 Infrastructure Gnss Series Receiver Netr9 +1
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-0215 MEDIUM This Month

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service (daemon. Rated medium severity (CVSS 4.3). No vendor patch available.

Privilege Escalation Denial Of Service Xen
NVD
CVSS 2.0
4.3
EPSS
0.1%
CVE-2013-2483 LOW Monitor

The acn_add_dmp_data function in epan/dissectors/packet-acn.c in the ACN dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Wireshark Debian Linux Opensuse
NVD
CVSS 2.0
3.3
EPSS
1.5%
CVE-2013-2478 LOW Monitor

The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Debian Linux Opensuse Wireshark
NVD
CVSS 2.0
3.3
EPSS
1.5%
CVE-2013-2484 LOW Monitor

The CIMD dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Debian Linux Opensuse Wireshark
NVD
CVSS 2.0
3.3
EPSS
1.4%
CVE-2013-2480 LOW Monitor

The RTPS and RTPS2 dissectors in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allow remote attackers to cause a denial of service (application crash) via a malformed packet. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Debian Linux Opensuse Wireshark
NVD
CVSS 2.0
3.3
EPSS
1.4%
CVE-2013-2479 LOW Monitor

The dissect_mpls_echo_tlv_dd_map function in epan/dissectors/packet-mpls-echo.c in the MPLS Echo dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Wireshark Opensuse
NVD
CVSS 2.0
3.3
EPSS
1.1%
CVE-2013-2475 LOW Monitor

The TCP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Wireshark Opensuse
NVD
CVSS 2.0
3.3
EPSS
0.4%
CVE-2013-2477 LOW Monitor

The CSN.1 dissector in Wireshark 1.8.x before 1.8.6 does not properly manage function pointers, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Wireshark Opensuse
NVD
CVSS 2.0
3.3
EPSS
0.4%
CVE-2013-2481 LOW Monitor

Integer signedness error in the dissect_mount_dirpath_call function in epan/dissectors/packet-mount.c in the Mount dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6, when. Rated low severity (CVSS 2.9). No vendor patch available.

Denial Of Service Wireshark Debian Linux Opensuse
NVD
CVSS 2.0
2.9
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy