Vulnerability Database

310,472

Total vulnerabilities in the database

CVE-2023-2857

BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

  • Published: May 26, 2023
  • Updated: Nov 16, 2025
  • CVE: CVE-2023-2857
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

CWEs:

Software From Fixed in
wireshark / wireshark 3.6.0 3.6.14
wireshark / wireshark 4.0.0 4.0.6
debian / debian_linux 12.0 12.0.x