检测

插件

最近更新时间

插件系列介绍

指标

风险暴露指标

Wireshark 4.4.x < 4.4.15 多个漏洞 (macOS)

high Nessus 插件 ID 311437

语言：

简介

远程 macOS / Mac OS X 主机上安装的应用程序受到多个漏洞的影响。

描述

远程 macOS / Mac OS X 主机上安装的 Wireshark 版本低于 4.4.15。因此，它受到 wireshark-4.4.15 公告中提及的多个漏洞影响。

- Wireshark 4.6.0 至 4.6.3 和 4.4.0 至 4.4.13 版本存在 RF4CE Profile 协议分析器崩溃漏洞，攻击者可借此造成拒绝服务 (CVE-2026-3203)

- GSM RP 协议剖分器在 Wireshark 4.6.04.6.4 中崩溃，允许4.4.144.4.0拒绝服务CVE-2026-6870（）

- Wireshark 4.6.04.4.144.6.44.4.0 中的 Monero 协议剖析崩溃，允许拒绝服务CVE-2026-5409（）

- Wireshark 4.6.04.6.4中的BT-DHT协议剖分崩溃，允许4.4.144.4.0拒绝服务CVE-2026-5408（）

- FC-SWILS协议在Wireshark 4.6.04.6.4中崩溃至4.4.144.4.0允许拒绝服务CVE-2026-5406（）

请注意，Nessus 尚未测试这些问题，而是只依据应用程序自我报告的版本号进行判断。

解决方案

升级至 Wireshark 4.4.15 或更高版本。

另见

https://gitlab.com/wireshark/wireshark/-/issues/21088

https://www.wireshark.org/security/wnpa-sec-2026-13

https://gitlab.com/wireshark/wireshark/-/issues/21094

https://www.wireshark.org/security/wnpa-sec-2026-15

https://gitlab.com/wireshark/wireshark/-/issues/21103

https://www.wireshark.org/security/wnpa-sec-2026-16

https://gitlab.com/wireshark/wireshark/-/issues/21105

https://www.wireshark.org/security/wnpa-sec-2026-17

https://gitlab.com/wireshark/wireshark/-/issues/21111

https://www.wireshark.org/security/wnpa-sec-2026-18

https://gitlab.com/wireshark/wireshark/-/issues/21113

https://www.wireshark.org/security/wnpa-sec-2026-20

https://gitlab.com/wireshark/wireshark/-/issues/21115

https://www.wireshark.org/security/wnpa-sec-2026-21

https://gitlab.com/wireshark/wireshark/-/issues/21122

https://www.wireshark.org/security/wnpa-sec-2026-22

https://gitlab.com/wireshark/wireshark/-/issues/21120

https://www.wireshark.org/security/wnpa-sec-2026-23

https://gitlab.com/wireshark/wireshark/-/issues/21125

https://www.wireshark.org/security/wnpa-sec-2026-24

https://gitlab.com/wireshark/wireshark/-/issues/21121

https://www.wireshark.org/security/wnpa-sec-2026-27

https://gitlab.com/wireshark/wireshark/-/issues/21127

https://www.wireshark.org/security/wnpa-sec-2026-28

https://gitlab.com/wireshark/wireshark/-/issues/21139

https://www.wireshark.org/security/wnpa-sec-2026-30

https://gitlab.com/wireshark/wireshark/-/issues/21144

https://www.wireshark.org/security/wnpa-sec-2026-31

https://gitlab.com/wireshark/wireshark/-/issues/21145

https://www.wireshark.org/security/wnpa-sec-2026-32

https://gitlab.com/wireshark/wireshark/-/issues/21149

https://www.wireshark.org/security/wnpa-sec-2026-34

https://gitlab.com/wireshark/wireshark/-/issues/21172

https://www.wireshark.org/security/wnpa-sec-2026-37

https://gitlab.com/wireshark/wireshark/-/issues/21177

https://www.wireshark.org/security/wnpa-sec-2026-38

https://gitlab.com/wireshark/wireshark/-/issues/21182

https://www.wireshark.org/security/wnpa-sec-2026-39

https://gitlab.com/wireshark/wireshark/-/issues/21188

https://gitlab.com/wireshark/wireshark/-/issues/21181

https://www.wireshark.org/security/wnpa-sec-2026-40

https://gitlab.com/wireshark/wireshark/-/issues/21184

https://www.wireshark.org/security/wnpa-sec-2026-41

https://gitlab.com/wireshark/wireshark/-/issues/21186

https://www.wireshark.org/security/wnpa-sec-2026-42

https://gitlab.com/wireshark/wireshark/-/issues/21189

https://www.wireshark.org/security/wnpa-sec-2026-43

https://gitlab.com/wireshark/wireshark/-/issues/21190

https://www.wireshark.org/security/wnpa-sec-2026-44

https://gitlab.com/wireshark/wireshark/-/issues/21191

https://www.wireshark.org/security/wnpa-sec-2026-45

https://gitlab.com/wireshark/wireshark/-/issues/21185

https://www.wireshark.org/security/wnpa-sec-2026-46

https://gitlab.com/wireshark/wireshark/-/issues/21214

https://www.wireshark.org/security/wnpa-sec-2026-47

https://gitlab.com/wireshark/wireshark/-/issues/21206

https://www.wireshark.org/security/wnpa-sec-2026-48

https://gitlab.com/wireshark/wireshark/-/issues/21207

https://www.wireshark.org/security/wnpa-sec-2026-49

https://gitlab.com/wireshark/wireshark/-/issues/21130

https://www.wireshark.org/security/wnpa-sec-2026-50

https://gitlab.com/wireshark/wireshark/-/issues/20972

https://www.wireshark.org/security/wnpa-sec-2026-05

https://gitlab.com/wireshark/wireshark/-/issues/21009

https://www.wireshark.org/security/wnpa-sec-2026-07

https://gitlab.com/wireshark/wireshark/-/issues/20880

https://www.wireshark.org/security/wnpa-sec-2026-01

https://gitlab.com/wireshark/wireshark/-/issues/20939

https://www.wireshark.org/security/wnpa-sec-2026-02

https://gitlab.com/wireshark/wireshark/-/issues/20945

https://www.wireshark.org/security/wnpa-sec-2026-03

https://gitlab.com/wireshark/wireshark/-/issues/20860

https://www.wireshark.org/security/wnpa-sec-2025-07

https://gitlab.com/wireshark/wireshark/-/issues/20884

https://www.wireshark.org/security/wnpa-sec-2025-08

https://gitlab.com/wireshark/wireshark/-/issues/20823

https://www.wireshark.org/security/wnpa-sec-2025-06

https://gitlab.com/wireshark/wireshark/-/issues/20509

https://www.wireshark.org/security/wnpa-sec-2025-02

https://gitlab.com/wireshark/wireshark/-/issues/20373

https://www.wireshark.org/security/wnpa-sec-2025-01

https://gitlab.com/wireshark/wireshark/-/issues/20176

https://www.wireshark.org/security/wnpa-sec-2024-14

https://gitlab.com/wireshark/wireshark/-/issues/20214

https://www.wireshark.org/security/wnpa-sec-2024-15

https://gitlab.com/wireshark/wireshark/-/issues/20026

https://www.wireshark.org/security/wnpa-sec-2024-12

https://gitlab.com/wireshark/wireshark/-/issues/20114

https://www.wireshark.org/security/wnpa-sec-2024-13

https://www.wireshark.org/docs/relnotes/wireshark-4.4.15.html

https://gitlab.com/wireshark/wireshark/-/issues/21066

https://www.wireshark.org/security/wnpa-sec-2026-08

https://gitlab.com/wireshark/wireshark/-/issues/21067

https://www.wireshark.org/security/wnpa-sec-2026-09

https://gitlab.com/wireshark/wireshark/-/issues/21070

https://www.wireshark.org/security/wnpa-sec-2026-10

https://gitlab.com/wireshark/wireshark/-/issues/21073

https://www.wireshark.org/security/wnpa-sec-2026-11

https://gitlab.com/wireshark/wireshark/-/issues/21077

https://www.wireshark.org/security/wnpa-sec-2026-12

插件详情

严重性: High

ID: 311437

文件名: macosx_wireshark_4_4_15.nasl

版本: 1.1

类型: Local

代理: macosx

系列: MacOS X Local Security Checks

发布时间: 2026/5/1

最近更新时间: 2026/5/1

支持的传感器: Frictionless Assessment Agent, Nessus Agent, Nessus

风险信息

VPR

风险因素: Medium

分数: 6.7

CVSS v2

风险因素: Medium

基本分数: 5

时间分数: 3.9

矢量: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS 分数来源: CVE-2026-6870

CVSS v3

风险因素: High

基本分数: 7.5

时间分数: 6.7

矢量: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

时间矢量: CVSS:3.0/E:P/RL:O/RC:C

CVSS 分数来源: CVE-2026-3203

漏洞信息

CPE: cpe:/a:wireshark:wireshark

必需的 KB 项: Host/local_checks_enabled, Host/MacOSX/Version, installed_sw/Wireshark

可利用: true

易利用性: Exploits are available

补丁发布日期: 2024/10/8

漏洞发布日期: 2024/10/8

参考资料信息

CVE: CVE-2024-11595, CVE-2024-11596, CVE-2024-9780, CVE-2024-9781, CVE-2025-13499, CVE-2025-13945, CVE-2025-13946, CVE-2025-1492, CVE-2025-5601, CVE-2026-3201, CVE-2026-3203, CVE-2026-5299, CVE-2026-5401, CVE-2026-5403, CVE-2026-5404, CVE-2026-5405, CVE-2026-5406, CVE-2026-5407, CVE-2026-5408, CVE-2026-5409, CVE-2026-5653, CVE-2026-5654, CVE-2026-5656, CVE-2026-5657, CVE-2026-6519, CVE-2026-6520, CVE-2026-6521, CVE-2026-6522, CVE-2026-6523, CVE-2026-6524, CVE-2026-6527, CVE-2026-6529, CVE-2026-6530, CVE-2026-6531, CVE-2026-6533, CVE-2026-6534, CVE-2026-6537, CVE-2026-6538, CVE-2026-6867, CVE-2026-6868, CVE-2026-6869, CVE-2026-6870

IAVB: 2024-B-0153-S, 2024-B-0185-S, 2025-B-0029-S, 2025-B-0086-S, 2025-B-0197-S, 2026-B-0053-S, 2026-B-0112