CVE-2023-3648
CVE-2023-3648 is a medium-severity vulnerability in Wireshark with a CVSS 3.x base score of 5.3. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-762.
Key facts
- Severity: Medium (CVSS 3.x base score 5.3)
- EPSS exploit prediction: 0% (14th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-762
- Affected product: Wireshark
- Published:
- Last modified:
Description
Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file
Frequently asked questions
- What is CVE-2023-3648?
- Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file
- How severe is CVE-2023-3648?
- CVE-2023-3648 has a CVSS 3.x base score of 5.3, rated medium severity. It is exploitable over local access with low attack complexity, requires no privileges and user interaction. Impact on confidentiality is low, integrity low, and availability low.
- Is CVE-2023-3648 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (14th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2023-3648?
- CVE-2023-3648 affects Wireshark. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2023-3648?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2023-3648 published?
- CVE-2023-3648 was published on 2023-07-14 and last updated on 2026-06-17.
References
- https://gitlab.com/wireshark/wireshark/-/issues/19105
- https://www.wireshark.org/security/wnpa-sec-2023-21.html
- https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html
Affected products (1)
- cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
More vulnerabilities in Wireshark
- CVE-2011-0444 — Critical (CVSS 10.0): Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0…
- CVE-2010-2995 — Critical (CVSS 10.0): The SigComp Universal Decompressor Virtual Machine (UDVM) in Wireshark 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9…
- CVE-2010-2994 — Critical (CVSS 10.0): Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has…
- CVE-2009-1266 — Critical (CVSS 10.0): Unspecified vulnerability in Wireshark before 1.0.7 has unknown impact and attack vectors.
- CVE-2009-1210 — Critical (CVSS 10.0): Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote…
- CVE-2008-3146 — Critical (CVSS 10.0): Multiple buffer overflows in packet_ncp2222.inc in Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allow attackers to…
All CVEs affecting Wireshark →
Other CWE-762 vulnerabilities
- CVE-2025-48431 — High (CVSS 7.5): Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings. This issue affects…
- CVE-2025-49080 — High (CVSS 7.5): There is a memory management vulnerability in Absolute Secure Access server versions 9.0 to 13.54. Attackers with…
- CVE-2023-45510 — High (CVSS 7.5): tsMuxer version git-2539d07 was discovered to contain an alloc-dealloc-mismatch (operator new [] vs operator delete)…
- CVE-2025-20189 — High (CVSS 7.4): A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation…
- CVE-2025-48755 — Low (CVSS 2.9): In the spiral-rs crate 0.2.0 for Rust, allocation can be attempted for a ZST (zero-sized type).
- CVE-2025-47737 — Low (CVSS 2.9): lib.rs in the trailer crate through 0.1.2 for Rust mishandles allocating with a size of zero.