CVE-2024-0210

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Wireshark version 4.2.0

Description The issue allows for denial of service via packet injection or crafted capture file, specifically affecting the Zigbee TLV dissector in Wireshark.

Recommendations For Wireshark version 4.2.0, update to a newer version to mitigate the risk. As a temporary workaround, consider disabling the Zigbee TLV dissector until a patch is available.

Exploit

Fix

DoS

Uncontrolled Recursion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-674

Related Identifiers

ALT-PU-2024-1387

CVE-2024-0210

OPENSUSE-SU-2024:13556-1

OPENSUSE-SU-2024_3165-1

SUSE-SU-2024:3165-1

Affected Products

Alt Linux

Suse

Wireshark

CVE-2024-0210

Weakness Enumeration

Related Identifiers

Affected Products

References · 41