Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-aqa4-p4k1-vbae
Vulnerability ID VCID-aqa4-p4k1-vbae
Aliases CVE-2019-5717
Summary security update
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-476 NULL Pointer Dereference
CWE-20 Improper Input Validation
System Score Found at
cvssv3 3.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5717.json
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
epss 0.00274 https://api.first.org/data/v1/epss?cve=CVE-2019-5717
cvssv3 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 4.3 https://nvd.nist.gov/vuln/detail/CVE-2019-5717
cvssv3 5.5 https://nvd.nist.gov/vuln/detail/CVE-2019-5717
archlinux Medium https://security.archlinux.org/AVG-844
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5717.json
https://api.first.org/data/v1/epss?cve=CVE-2019-5717
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15337
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=bf9272a92f3df1e4ccfaad434e123222ae5313f7
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5716
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5717
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5718
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5719
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9208
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9209
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9214
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://lists.debian.org/debian-lts-announce/2019/01/msg00022.html
https://seclists.org/bugtraq/2019/Mar/35
https://www.debian.org/security/2019/dsa-4416
https://www.wireshark.org/security/wnpa-sec-2019-02.html
http://www.securityfocus.com/bid/106482
1667581 https://bugzilla.redhat.com/show_bug.cgi?id=1667581
ASA-201901-5 https://security.archlinux.org/ASA-201901-5
AVG-844 https://security.archlinux.org/AVG-844
cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
CVE-2019-5717 https://nvd.nist.gov/vuln/detail/CVE-2019-5717
No exploits are available.
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5717.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2019-5717
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2019-5717
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.50747
EPSS Score 0.00274
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:58:29.142306+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.0.0