CNNVD-202509-233 Information

CNNVD ID

CNNVD-202509-233

Related CVE

CVE-2025-9817

• CNNVD Published: 2025-09-03

Description (Chinese)

Wireshark（前称Ethereal）是导线鲨鱼（Wireshark）团队的一套网络数据包分析软件。该软件的功能是截取网络数据包，并显示出详细的数据以供分析。 Wireshark 4.4.0至4.4.8版本存在代码问题漏洞，该漏洞源于SSH解析器崩溃，可能导致拒绝服务。

Description (English)

Wireshark (formerly Ethel) is a web-based package analysis software for the Wireshark team. The software is designed to intercept network data packages and to display detailed data for analysis. Wireshanks 4.4.0 to 4.4.8 have a code gap that stems from the collapse of the SSH resolver and may lead to the denial of services.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

导线鲨鱼

Published

2025-09-03

Last Modified

2026-02-24

References

https://gitlab.com/wireshark/wireshark/-/issues/20642 https://www.wireshark.org/security/wnpa-sec-2025-03.html https://vigilance.fr/vulnerability/Wireshark-denial-of-service-via-SSH-Dissector-48094 https://access.redhat.com/security/cve/cve-2025-9817

Patch

https://www.wireshark.org/security/wnpa-sec-2025-03.html