CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service
References
Link Resource
https://gitlab.com/wireshark/wireshark/-/issues/20860 Exploit Issue Tracking Patch Third Party Advisory
https://www.wireshark.org/security/wnpa-sec-2025-07.html Exploit Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

History

17 Jun 2026, 08:35

Type Values Removed Values Added
Summary
  • (es) El fallo del disector HTTP3 en Wireshark 4.6.0 y 4.6.1 permite denegación de servicio.
References () https://gitlab.com/wireshark/wireshark/-/issues/20860 - Exploit, Issue Tracking, Third Party Advisory, Patch () https://gitlab.com/wireshark/wireshark/-/issues/20860 - Exploit, Issue Tracking, Patch, Third Party Advisory
References () https://www.wireshark.org/security/wnpa-sec-2025-07.html - Vendor Advisory, Exploit, Issue Tracking () https://www.wireshark.org/security/wnpa-sec-2025-07.html - Exploit, Issue Tracking, Vendor Advisory

05 Dec 2025, 15:08

Type Values Removed Values Added
First Time Wireshark wireshark
Wireshark
References () https://gitlab.com/wireshark/wireshark/-/issues/20860 - () https://gitlab.com/wireshark/wireshark/-/issues/20860 - Exploit, Issue Tracking, Third Party Advisory, Patch
References () https://www.wireshark.org/security/wnpa-sec-2025-07.html - () https://www.wireshark.org/security/wnpa-sec-2025-07.html - Vendor Advisory, Exploit, Issue Tracking
CPE cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

03 Dec 2025, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-12-03 08:15

Updated : 2026-06-17 08:35


NVD link : CVE-2025-13945

Mitre link : CVE-2025-13945

CVE.ORG link : CVE-2025-13945


JSON object : View

Products Affected

wireshark

  • wireshark
CWE
CWE-1325

Improperly Controlled Sequential Memory Allocation