CVE-2023-0411 MEDIUM

CVE-2023-0411

Vendor Wireshark Foundation

Product Wireshark

Published January 24, 2023

Last update November 3, 2025

View on NVD All CVEs

CVSS base score

6.3/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction Required

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Key dates

02Disclosure timeline

January 24, 2023 CVE published

November 3, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0411

Identifiers

CVE CVE-2023-0411

CVSS 6.3 / MEDIUM

Affected versions

Vendor Wireshark Foundation

Product Wireshark

Affected >=4.0.0, <4.0.3

Vendor Wireshark Foundation

Product Wireshark

Affected >=3.6.0, <3.6.11