CVE-2023-0668

CVE-2023-0668: Wireshark IEEE-C37.118 parsing buffer overflow

Vendor Wireshark Foundation
Product Wireshark
Weakness CWE-125
Published June 7, 2023
Last update November 3, 2025

CVSS base score

What the vulnerability does

01Description

Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.

Key dates

02Disclosure timeline

June 7, 2023 CVE published
November 3, 2025 Record updated