Wireshark 4.6.x < 4.6.5 多个漏洞 (macOS)
high Nessus 插件 ID 311427
语言:
简介
远程 macOS / Mac OS X 主机上安装的应用程序受到多个漏洞的影响。描述
远程 macOS / Mac OS X 主机上安装的 Wireshark 版本低于 4.6.5。因此,它受到 wireshark-4.6.5 公告中提及的多个漏洞影响。- Wireshark 4.6.0 至 4.6.3 和 4.4.0 至 4.4.13 版本存在 RF4CE Profile 协议分析器崩溃漏洞,攻击者可借此造成拒绝服务 (CVE-2026-3203)
- GSM RP 协议剖分器在 Wireshark 4.6.04.6.4 中崩溃,允许4.4.144.4.0拒绝服务CVE-2026-6870()
- Wireshark 4.6.04.4.144.6.44.4.0 中的 Monero 协议剖析崩溃,允许拒绝服务CVE-2026-5409()
- Wireshark 4.6.04.6.4中的BT-DHT协议剖分崩溃,允许4.4.144.4.0拒绝服务CVE-2026-5408()
- FC-SWILS协议在Wireshark 4.6.04.6.4中崩溃至4.4.144.4.0允许拒绝服务CVE-2026-5406()
请注意,Nessus 尚未测试这些问题,而是只依据应用程序自我报告的版本号进行判断。
解决方案
升级至 Wireshark 4.6.5 或更高版本。另见
https://www.wireshark.org/docs/relnotes/wireshark-4.6.5.html
https://gitlab.com/wireshark/wireshark/-/issues/21066
https://www.wireshark.org/security/wnpa-sec-2026-08
https://gitlab.com/wireshark/wireshark/-/issues/21067
https://www.wireshark.org/security/wnpa-sec-2026-09
https://gitlab.com/wireshark/wireshark/-/issues/21070
https://www.wireshark.org/security/wnpa-sec-2026-10
https://gitlab.com/wireshark/wireshark/-/issues/21073
https://www.wireshark.org/security/wnpa-sec-2026-11
https://gitlab.com/wireshark/wireshark/-/issues/21077
https://www.wireshark.org/security/wnpa-sec-2026-12
https://gitlab.com/wireshark/wireshark/-/issues/21088
https://www.wireshark.org/security/wnpa-sec-2026-13
https://gitlab.com/wireshark/wireshark/-/issues/21090
https://www.wireshark.org/security/wnpa-sec-2026-14
https://gitlab.com/wireshark/wireshark/-/issues/21094
https://www.wireshark.org/security/wnpa-sec-2026-15
https://gitlab.com/wireshark/wireshark/-/issues/21103
https://www.wireshark.org/security/wnpa-sec-2026-16
https://gitlab.com/wireshark/wireshark/-/issues/21105
https://www.wireshark.org/security/wnpa-sec-2026-17
https://gitlab.com/wireshark/wireshark/-/issues/21111
https://www.wireshark.org/security/wnpa-sec-2026-18
https://gitlab.com/wireshark/wireshark/-/issues/21112
https://www.wireshark.org/security/wnpa-sec-2026-19
https://gitlab.com/wireshark/wireshark/-/issues/21113
https://www.wireshark.org/security/wnpa-sec-2026-20
https://gitlab.com/wireshark/wireshark/-/issues/21115
https://www.wireshark.org/security/wnpa-sec-2026-21
https://gitlab.com/wireshark/wireshark/-/issues/21122
https://www.wireshark.org/security/wnpa-sec-2026-22
https://gitlab.com/wireshark/wireshark/-/issues/21120
https://www.wireshark.org/security/wnpa-sec-2026-23
https://gitlab.com/wireshark/wireshark/-/issues/21125
https://www.wireshark.org/security/wnpa-sec-2026-24
https://gitlab.com/wireshark/wireshark/-/issues/21065
https://www.wireshark.org/security/wnpa-sec-2026-25
https://gitlab.com/wireshark/wireshark/-/issues/21121
https://www.wireshark.org/security/wnpa-sec-2026-27
https://gitlab.com/wireshark/wireshark/-/issues/21127
https://www.wireshark.org/security/wnpa-sec-2026-28
https://gitlab.com/wireshark/wireshark/-/issues/21139
https://www.wireshark.org/security/wnpa-sec-2026-30
https://gitlab.com/wireshark/wireshark/-/issues/21144
https://www.wireshark.org/security/wnpa-sec-2026-31
https://gitlab.com/wireshark/wireshark/-/issues/21145
https://www.wireshark.org/security/wnpa-sec-2026-32
https://gitlab.com/wireshark/wireshark/-/issues/21151
https://www.wireshark.org/security/wnpa-sec-2026-33
https://gitlab.com/wireshark/wireshark/-/issues/21147
https://gitlab.com/wireshark/wireshark/-/issues/21149
https://www.wireshark.org/security/wnpa-sec-2026-34
https://gitlab.com/wireshark/wireshark/-/issues/21173
https://www.wireshark.org/security/wnpa-sec-2026-35
https://gitlab.com/wireshark/wireshark/-/issues/21008
https://www.wireshark.org/security/wnpa-sec-2026-36
https://gitlab.com/wireshark/wireshark/-/issues/21172
https://www.wireshark.org/security/wnpa-sec-2026-37
https://gitlab.com/wireshark/wireshark/-/issues/21177
https://www.wireshark.org/security/wnpa-sec-2026-38
https://gitlab.com/wireshark/wireshark/-/issues/21182
https://www.wireshark.org/security/wnpa-sec-2026-39
https://gitlab.com/wireshark/wireshark/-/issues/21188
https://gitlab.com/wireshark/wireshark/-/issues/21181
https://www.wireshark.org/security/wnpa-sec-2026-40
https://gitlab.com/wireshark/wireshark/-/issues/21184
https://www.wireshark.org/security/wnpa-sec-2026-41
https://gitlab.com/wireshark/wireshark/-/issues/21186
https://www.wireshark.org/security/wnpa-sec-2026-42
https://gitlab.com/wireshark/wireshark/-/issues/21189
https://www.wireshark.org/security/wnpa-sec-2026-43
https://gitlab.com/wireshark/wireshark/-/issues/21190
https://www.wireshark.org/security/wnpa-sec-2026-44
https://gitlab.com/wireshark/wireshark/-/issues/21191
https://www.wireshark.org/security/wnpa-sec-2026-45
https://gitlab.com/wireshark/wireshark/-/issues/21185
https://www.wireshark.org/security/wnpa-sec-2026-46
https://gitlab.com/wireshark/wireshark/-/issues/21214
https://www.wireshark.org/security/wnpa-sec-2026-47
https://gitlab.com/wireshark/wireshark/-/issues/21206
https://www.wireshark.org/security/wnpa-sec-2026-48
https://gitlab.com/wireshark/wireshark/-/issues/21207
https://www.wireshark.org/security/wnpa-sec-2026-49
https://gitlab.com/wireshark/wireshark/-/issues/21130
https://www.wireshark.org/security/wnpa-sec-2026-50
https://gitlab.com/wireshark/wireshark/-/issues/20972
https://www.wireshark.org/security/wnpa-sec-2026-05
https://gitlab.com/wireshark/wireshark/-/issues/21000
https://www.wireshark.org/security/wnpa-sec-2026-06
https://gitlab.com/wireshark/wireshark/-/issues/21009
https://www.wireshark.org/security/wnpa-sec-2026-07
https://gitlab.com/wireshark/wireshark/-/issues/20880
https://www.wireshark.org/security/wnpa-sec-2026-01
https://gitlab.com/wireshark/wireshark/-/issues/20939
https://www.wireshark.org/security/wnpa-sec-2026-02
https://gitlab.com/wireshark/wireshark/-/issues/20945
https://www.wireshark.org/security/wnpa-sec-2026-03
https://gitlab.com/wireshark/wireshark/-/issues/20944
https://www.wireshark.org/security/wnpa-sec-2026-04
https://gitlab.com/wireshark/wireshark/-/issues/20860
https://www.wireshark.org/security/wnpa-sec-2025-07
https://gitlab.com/wireshark/wireshark/-/issues/20884
https://www.wireshark.org/security/wnpa-sec-2025-08
https://gitlab.com/wireshark/wireshark/-/issues/20770
https://www.wireshark.org/security/wnpa-sec-2025-05
插件详情
严重性: High
ID: 311427
文件名: macosx_wireshark_4_6_5.nasl
版本: 1.3
类型: Local
代理: macosx
发布时间: 2026/5/1
最近更新时间: 2026/5/5
支持的传感器: Frictionless Assessment Agent, Nessus Agent, Nessus
风险信息
VPR
风险因素: High
分数: 7.4
CVSS v2
风险因素: High
基本分数: 7.2
时间分数: 5.6
矢量: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS 分数来源: CVE-2026-5656
CVSS v3
风险因素: High
基本分数: 7.8
时间分数: 7
矢量: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
时间矢量: CVSS:3.0/E:P/RL:O/RC:C
漏洞信息
CPE: cpe:/a:wireshark:wireshark
必需的 KB 项: installed_sw/Wireshark, Host/MacOSX/Version, Host/local_checks_enabled
可利用: true
易利用性: Exploits are available
补丁发布日期: 2025/11/19
漏洞发布日期: 2024/10/8
参考资料信息
CVE: CVE-2025-13499, CVE-2025-13674, CVE-2025-13945, CVE-2025-13946, CVE-2026-3201, CVE-2026-3202, CVE-2026-3203, CVE-2026-5299, CVE-2026-5401, CVE-2026-5402, CVE-2026-5403, CVE-2026-5404, CVE-2026-5405, CVE-2026-5406, CVE-2026-5407, CVE-2026-5408, CVE-2026-5409, CVE-2026-5653, CVE-2026-5654, CVE-2026-5655, CVE-2026-5656, CVE-2026-5657, CVE-2026-6519, CVE-2026-6520, CVE-2026-6521, CVE-2026-6522, CVE-2026-6523, CVE-2026-6524, CVE-2026-6525, CVE-2026-6526, CVE-2026-6527, CVE-2026-6528, CVE-2026-6529, CVE-2026-6530, CVE-2026-6531, CVE-2026-6533, CVE-2026-6534, CVE-2026-6536, CVE-2026-6537, CVE-2026-6538, CVE-2026-6867, CVE-2026-6868, CVE-2026-6869, CVE-2026-6870
IAVB: 2026-B-0112