{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-13674", "assignerOrgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "state": "PUBLISHED", "assignerShortName": "GitLab", "dateReserved": "2025-11-25T18:33:44.747Z", "datePublished": "2025-11-26T11:33:39.916Z", "dateUpdated": "2025-11-26T14:06:22.685Z"}, "containers": {"cna": {"title": "Access of Uninitialized Pointer in Wireshark", "descriptions": [{"lang": "en", "value": "BPv7 dissector crash in Wireshark 4.6.0 allows denial of service"}], "affected": [{"vendor": "Wireshark Foundation", "product": "Wireshark", "versions": [{"version": "4.6.0", "status": "affected"}], "defaultStatus": "unaffected"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-824: Access of Uninitialized Pointer", "cweId": "CWE-824", "type": "CWE"}]}], "references": [{"url": "https://www.wireshark.org/security/wnpa-sec-2025-05.html"}, {"url": "https://gitlab.com/wireshark/wireshark/-/issues/20770", "name": "GitLab Issue #20770", "tags": ["issue-tracking", "permissions-required"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM"}}], "solutions": [{"lang": "en", "value": "Upgrade to version 4.6.1 or above"}], "providerMetadata": {"orgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "shortName": "GitLab", "dateUpdated": "2025-11-26T11:33:39.916Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-11-26T14:06:08.560289Z", "id": "CVE-2025-13674", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-26T14:06:22.685Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-13674", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-11-26T14:06:08.560289Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-26T14:06:15.229Z"}}], "cna": {"title": "Access of Uninitialized Pointer in Wireshark", "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Wireshark Foundation", "product": "Wireshark", "versions": [{"status": "affected", "version": "4.6.0"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Upgrade to version 4.6.1 or above"}], "references": [{"url": "https://www.wireshark.org/security/wnpa-sec-2025-05.html"}, {"url": "https://gitlab.com/wireshark/wireshark/-/issues/20770", "name": "GitLab Issue #20770", "tags": ["issue-tracking", "permissions-required"]}], "descriptions": [{"lang": "en", "value": "BPv7 dissector crash in Wireshark 4.6.0 allows denial of service"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-824", "description": "CWE-824: Access of Uninitialized Pointer"}]}], "providerMetadata": {"orgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "shortName": "GitLab", "dateUpdated": "2025-11-26T11:33:39.916Z"}}}, "cveMetadata": {"cveId": "CVE-2025-13674", "state": "PUBLISHED", "dateUpdated": "2025-11-26T14:06:22.685Z", "dateReserved": "2025-11-25T18:33:44.747Z", "assignerOrgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "datePublished": "2025-11-26T11:33:39.916Z", "assignerShortName": "GitLab"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wireshark:wireshark:4.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "EC49CB33-4C79-4664-AC90-7CA539476EE7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "BPv7 dissector crash in Wireshark 4.6.0 allows denial of service"}], "id": "CVE-2025-13674", "lastModified": "2025-12-03T19:37:17.280", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "cve@gitlab.com", "type": "Secondary"}]}, "published": "2025-11-26T12:15:46.143", "references": [{"source": "cve@gitlab.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://gitlab.com/wireshark/wireshark/-/issues/20770"}, {"source": "cve@gitlab.com", "tags": ["Vendor Advisory"], "url": "https://www.wireshark.org/security/wnpa-sec-2025-05.html"}], "sourceIdentifier": "cve@gitlab.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-824"}], "source": "cve@gitlab.com", "type": "Primary"}]}

{"bugzilla": {"description": "Wireshark: Wireshark: BPv7 dissector crash leads to denial of service", "id": "2417250", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417250"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-824", "details": ["A flaw in the BPv7 (Bundle Protocol v7) dissector in Wireshark 4.6.0 can cause the application to crash when processing certain malformed packets or trace files. The bug was discovered during internal fuzzing and occurs due to a use-after-free memory error triggered while decoding BPv7 elements."], "mitigation": {"lang": "en:us", "value": "Mitigation is either unavailable or does not meet Red Hat Product Security standards for usability, deployment, applicability, or stability."}, "name": "CVE-2025-13674", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2025-11-26T11:33:39Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-13674\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-13674\nhttps://gitlab.com/wireshark/wireshark/-/issues/20770\nhttps://www.wireshark.org/security/wnpa-sec-2025-05.html"], "statement": "This flaw is rated as moderate because its impact is limited to a denial-of-service crash within the Wireshark application and does not allow remote code execution, memory corruption leading to privilege escalation, or compromise of system integrity. The vulnerability arises from a use-after-free condition in the BPv7 dissector, which can be triggered only by processing a specially crafted packet capture (PCAP) or by receiving malformed traffic while actively capturing. In typical environments, Wireshark is used for offline analysis or run by knowledgeable users who already treat untrusted capture files cautiously, reducing real-world exploitability. Furthermore, the attacker cannot gain control over execution\u2014only cause the application to terminate\u2014making the security impact significantly lower than flaws that enable data exfiltration or arbitrary code execution. As a result, the issue fits the characteristics of a moderate DoS-oriented parser bug rather than an important or high-severity vulnerability.", "threat_severity": "Moderate"}

{"created": "2025-11-27T16:26:10.522010+00:00", "updated": "2025-11-27T16:26:10.522045+00:00", "vendors": ["wireshark", "wireshark$PRODUCT$wireshark"]}