偵測

Wireshark 4.4.x < 4.4.15 多個弱點 (macOS)

high Nessus Plugin ID 311437

語言:

概要

遠端 macOS / Mac OS X 主機上安裝的應用程式受到多個弱點影響。

說明

遠端 macOS / Mac OS X 主機上安裝的 Wireshark 版本比 4.4.15 舊。因此,它受到 wireshark-4.4.15 公告中提及的多項漏洞影響。

 - Wireshark 4.6.0 至 4.6.3 和 4.4.0 至 4.4.13 版中的 RF4CE Profile 通訊協定剖析器當機弱點可造成系統拒絕服務 (CVE-2026-3203)

 - GSM RP 協定在 Wireshark 中解體式解體器崩潰,允許4.4.04.4.14阻斷服務(CVE-2026-6870)4.6.04.6.4

 - Monero 協定解體器在 Wireshark 4.6.04.4.144.6.44.4.0 中崩潰至 與 允許拒絕服務CVE-2026-5409()

 - Wireshark 4.6.04.4.144.6.44.4.0 中的 BT-DHT 協定剖斷崩潰,允許拒絕服務()CVE-2026-5408

 - FC-SWILS 協定剖析 Wireshark 4.6.04.6.4 中 當機至 4.4.144.4.0 與允許拒絕服務CVE-2026-5406()

請注意,Nessus 並未測試這些問題,而是僅依據應用程式自我報告的版本號碼作出判斷。

解決方案

升級版本至 Wireshark 4.4.15 或更新版本。

另請參閱

https://gitlab.com/wireshark/wireshark/-/issues/21088

https://www.wireshark.org/security/wnpa-sec-2026-13

https://gitlab.com/wireshark/wireshark/-/issues/21094

https://www.wireshark.org/security/wnpa-sec-2026-15

https://gitlab.com/wireshark/wireshark/-/issues/21103

https://www.wireshark.org/security/wnpa-sec-2026-16

https://gitlab.com/wireshark/wireshark/-/issues/21105

https://www.wireshark.org/security/wnpa-sec-2026-17

https://gitlab.com/wireshark/wireshark/-/issues/21111

https://www.wireshark.org/security/wnpa-sec-2026-18

https://gitlab.com/wireshark/wireshark/-/issues/21113

https://www.wireshark.org/security/wnpa-sec-2026-20

https://gitlab.com/wireshark/wireshark/-/issues/21115

https://www.wireshark.org/security/wnpa-sec-2026-21

https://gitlab.com/wireshark/wireshark/-/issues/21122

https://www.wireshark.org/security/wnpa-sec-2026-22

https://gitlab.com/wireshark/wireshark/-/issues/21120

https://www.wireshark.org/security/wnpa-sec-2026-23

https://gitlab.com/wireshark/wireshark/-/issues/21125

https://www.wireshark.org/security/wnpa-sec-2026-24

https://gitlab.com/wireshark/wireshark/-/issues/21121

https://www.wireshark.org/security/wnpa-sec-2026-27

https://gitlab.com/wireshark/wireshark/-/issues/21127

https://www.wireshark.org/security/wnpa-sec-2026-28

https://gitlab.com/wireshark/wireshark/-/issues/21139

https://www.wireshark.org/security/wnpa-sec-2026-30

https://gitlab.com/wireshark/wireshark/-/issues/21144

https://www.wireshark.org/security/wnpa-sec-2026-31

https://gitlab.com/wireshark/wireshark/-/issues/21145

https://www.wireshark.org/security/wnpa-sec-2026-32

https://gitlab.com/wireshark/wireshark/-/issues/21149

https://www.wireshark.org/security/wnpa-sec-2026-34

https://gitlab.com/wireshark/wireshark/-/issues/21172

https://www.wireshark.org/security/wnpa-sec-2026-37

https://gitlab.com/wireshark/wireshark/-/issues/21177

https://www.wireshark.org/security/wnpa-sec-2026-38

https://gitlab.com/wireshark/wireshark/-/issues/21182

https://www.wireshark.org/security/wnpa-sec-2026-39

https://gitlab.com/wireshark/wireshark/-/issues/21188

https://gitlab.com/wireshark/wireshark/-/issues/21181

https://www.wireshark.org/security/wnpa-sec-2026-40

https://gitlab.com/wireshark/wireshark/-/issues/21184

https://www.wireshark.org/security/wnpa-sec-2026-41

https://gitlab.com/wireshark/wireshark/-/issues/21186

https://www.wireshark.org/security/wnpa-sec-2026-42

https://gitlab.com/wireshark/wireshark/-/issues/21189

https://www.wireshark.org/security/wnpa-sec-2026-43

https://gitlab.com/wireshark/wireshark/-/issues/21190

https://www.wireshark.org/security/wnpa-sec-2026-44

https://gitlab.com/wireshark/wireshark/-/issues/21191

https://www.wireshark.org/security/wnpa-sec-2026-45

https://gitlab.com/wireshark/wireshark/-/issues/21185

https://www.wireshark.org/security/wnpa-sec-2026-46

https://gitlab.com/wireshark/wireshark/-/issues/21214

https://www.wireshark.org/security/wnpa-sec-2026-47

https://gitlab.com/wireshark/wireshark/-/issues/21206

https://www.wireshark.org/security/wnpa-sec-2026-48

https://gitlab.com/wireshark/wireshark/-/issues/21207

https://www.wireshark.org/security/wnpa-sec-2026-49

https://gitlab.com/wireshark/wireshark/-/issues/21130

https://www.wireshark.org/security/wnpa-sec-2026-50

https://gitlab.com/wireshark/wireshark/-/issues/20972

https://www.wireshark.org/security/wnpa-sec-2026-05

https://gitlab.com/wireshark/wireshark/-/issues/21009

https://www.wireshark.org/security/wnpa-sec-2026-07

https://gitlab.com/wireshark/wireshark/-/issues/20880

https://www.wireshark.org/security/wnpa-sec-2026-01

https://gitlab.com/wireshark/wireshark/-/issues/20939

https://www.wireshark.org/security/wnpa-sec-2026-02

https://gitlab.com/wireshark/wireshark/-/issues/20945

https://www.wireshark.org/security/wnpa-sec-2026-03

https://gitlab.com/wireshark/wireshark/-/issues/20860

https://www.wireshark.org/security/wnpa-sec-2025-07

https://gitlab.com/wireshark/wireshark/-/issues/20884

https://www.wireshark.org/security/wnpa-sec-2025-08

https://gitlab.com/wireshark/wireshark/-/issues/20823

https://www.wireshark.org/security/wnpa-sec-2025-06

https://gitlab.com/wireshark/wireshark/-/issues/20509

https://www.wireshark.org/security/wnpa-sec-2025-02

https://gitlab.com/wireshark/wireshark/-/issues/20373

https://www.wireshark.org/security/wnpa-sec-2025-01

https://gitlab.com/wireshark/wireshark/-/issues/20176

https://www.wireshark.org/security/wnpa-sec-2024-14

https://gitlab.com/wireshark/wireshark/-/issues/20214

https://www.wireshark.org/security/wnpa-sec-2024-15

https://gitlab.com/wireshark/wireshark/-/issues/20026

https://www.wireshark.org/security/wnpa-sec-2024-12

https://gitlab.com/wireshark/wireshark/-/issues/20114

https://www.wireshark.org/security/wnpa-sec-2024-13

https://www.wireshark.org/docs/relnotes/wireshark-4.4.15.html

https://gitlab.com/wireshark/wireshark/-/issues/21066

https://www.wireshark.org/security/wnpa-sec-2026-08

https://gitlab.com/wireshark/wireshark/-/issues/21067

https://www.wireshark.org/security/wnpa-sec-2026-09

https://gitlab.com/wireshark/wireshark/-/issues/21070

https://www.wireshark.org/security/wnpa-sec-2026-10

https://gitlab.com/wireshark/wireshark/-/issues/21073

https://www.wireshark.org/security/wnpa-sec-2026-11

https://gitlab.com/wireshark/wireshark/-/issues/21077

https://www.wireshark.org/security/wnpa-sec-2026-12

Plugin 詳細資訊

嚴重性: High

ID: 311437

檔案名稱: macosx_wireshark_4_4_15.nasl

版本: 1.1

類型: Local

代理程式: macosx

已發布: 2026/5/1

已更新: 2026/5/1

支援的感應器: Frictionless Assessment Agent, Nessus Agent, Nessus

風險資訊

VPR

風險因素: Medium

分數: 6.7

CVSS v2

風險因素: Medium

基本分數: 5

時間性分數: 3.9

媒介: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS 評分資料來源: CVE-2026-6870

CVSS v3

風險因素: High

基本分數: 7.5

時間性分數: 6.7

媒介: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

時間媒介: CVSS:3.0/E:P/RL:O/RC:C

CVSS 評分資料來源: CVE-2026-3203

弱點資訊

CPE: cpe:/a:wireshark:wireshark

必要的 KB 項目: Host/local_checks_enabled, Host/MacOSX/Version, installed_sw/Wireshark

可被惡意程式利用: true

可輕鬆利用: Exploits are available

修補程式發佈日期: 2024/10/8

弱點發布日期: 2024/10/8

參考資訊

CVE: CVE-2024-11595, CVE-2024-11596, CVE-2024-9780, CVE-2024-9781, CVE-2025-13499, CVE-2025-13945, CVE-2025-13946, CVE-2025-1492, CVE-2025-5601, CVE-2026-3201, CVE-2026-3203, CVE-2026-5299, CVE-2026-5401, CVE-2026-5403, CVE-2026-5404, CVE-2026-5405, CVE-2026-5406, CVE-2026-5407, CVE-2026-5408, CVE-2026-5409, CVE-2026-5653, CVE-2026-5654, CVE-2026-5656, CVE-2026-5657, CVE-2026-6519, CVE-2026-6520, CVE-2026-6521, CVE-2026-6522, CVE-2026-6523, CVE-2026-6524, CVE-2026-6527, CVE-2026-6529, CVE-2026-6530, CVE-2026-6531, CVE-2026-6533, CVE-2026-6534, CVE-2026-6537, CVE-2026-6538, CVE-2026-6867, CVE-2026-6868, CVE-2026-6869, CVE-2026-6870

IAVB: 2024-B-0153-S, 2024-B-0185-S, 2025-B-0029-S, 2025-B-0086-S, 2025-B-0197-S, 2026-B-0053-S, 2026-B-0112