Martin Nyhus

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 4.2.0 through 4.2.4 Wireshark versions 4.0.0 through 4.0.14 Wireshark versions 3.6.0 through 3.6.22 **Description** The issue is related to infinite loops in the MONGO and ZigBee TLV dissectors, which can cause a denial of service. This can be achieved via packet injection or crafted capture files, allowing a remote attacker to exploit the vulnerability and disrupt service. **Recommendations** For Wireshark versions 4.2.0 through 4.2.4, update to a version outside of this range to resolve the issue. For Wireshark versions 4.0.0 through 4.0.14, update to a version outside of this range to resolve the issue. For Wireshark versions 3.6.0 through 3.6.22, update to a version outside of this range to resolve the issue. As a temporary workaround, consider disabling the MONGO and ZigBee TLV dissectors to minimize the risk of exploitation.