CVE-2019-10895

high-risk
Published 2019-04-09

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

Do I need to act?

!
12.4% chance of exploitation in next 30 days
EPSS score — higher than 88% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (12)

Affected Vendors

Debian Canonical Fedoraproject Wireshark Opensuse

References (28)

Mailing List http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00022.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00027.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html
Third Party Advisory http://www.securityfocus.com/bid/107834
Exploit https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15497
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=2fbbde78...
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=38680c4c...
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=cab0cff6...
Mailing List https://lists.debian.org/debian-lts-announce/2019/05/msg00034.html
Mailing List https://lists.debian.org/debian-lts-announce/2020/10/msg00036.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...
Third Party Advisory https://usn.ubuntu.com/3986-1/
Vendor Advisory https://www.wireshark.org/security/wnpa-sec-2019-09.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00022.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00027.html
Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html
Third Party Advisory http://www.securityfocus.com/bid/107834
Exploit https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15497
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=2fbbde78...
and 8 more references
55
/ 100
high-risk
Severity 26/34 · High
Exploitability 12/34 · Low
Exposure 17/34 · Moderate