CVE-2025-1492
HIGH7.5EPSS 0.05%Published: 2/20/2025Modified: 5/14/2026
Description
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file
Affected packages (1)
- Debian/wiresharkfrom 0, < 4.0.17-0+deb12u2
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |