CVE-2023-4513

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 24, 2023
Updated: Mar 1, 2024
CWE ID 697
CWE ID 184

Summary

CVE-2023-4513 is a denial-of-service vulnerability affecting Wireshark versions 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15. The issue lies in the BT SDP (Session Description Protocol) dissector, which experiences a memory leak. An attacker can exploit this vulnerability by injecting malicious packets or using crafted capture files. The memory leak causes Wireshark to consume excessive resources, leading to a denial-of-service condition.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share