Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2020-9430

Good to know:

icon
icon

Date: February 27, 2020

In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field.

Language: C

Severity Score

Related Resources (17)

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html
https://access.redhat.com/security/cve/CVE-2020-9430
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=93d6b03a67953b82880cdbdcf0d30e2a3246d790
https://people.canonical.com/~ubuntu-security/cve/CVE-2020-9430
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JDVMBCADP73TBISYCS6ARKOSNNJOGXXZ/
https://security-tracker.debian.org/tracker/CVE-2020-9430
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=6b98dc63701b1da1cc7681cb383dabb0b7007d73
https://nvd.nist.gov/vuln/detail/CVE-2020-9430
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16383
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DZBICEY2HGSNQ3RPBLMDDYVAHGOGS4E2/
https://www.wireshark.org/security/wnpa-sec-2020-04.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XN2GMGLT5XND7U34WX3O23WKUZ7JHMVN/
https://lists.debian.org/debian-lts-announce/2021/02/msg00008.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16368
https://security.gentoo.org/glsa/202007-13
https://security.alpinelinux.org/vuln/CVE-2020-9430
https://www.mend.io/vulnerability-database/CVE-2020-9430

Severity Score

Weakness Type (CWE)

Input Validation

CWE-20

Top Fix

icon

Upgrade Version

Upgrade to version v2.6.15,v3.0.9,v3.2.2

Learn More

CVSS v3

Base Score:
Attack Vector (AV):
Attack Complexity (AC):
Privileges Required (PR):
User Interaction (UI):
Scope (S):
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): NONE

CVSS v2

Base Score:
Access Vector (AV):
Access Complexity (AC):
Authentication (AU):
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): HIGH
Additional information:

Do you need more information?

Contact Us