CVE-2024-11595

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.2.0 through 4.2.8 Wireshark versions 4.4.0 through 4.4.1

Description The issue is related to the FiveCo RAP dissector in Wireshark, which can enter an infinite loop. This can be exploited to cause a denial of service by injecting specially crafted packets or using a crafted capture file.

Recommendations For Wireshark versions 4.2.0 through 4.2.8, consider disabling the FiveCo RAP dissector until a patch is available. For Wireshark versions 4.4.0 through 4.4.1, consider disabling the FiveCo RAP dissector until a patch is available. As a temporary workaround, avoid using the FiveCo RAP dissector in Wireshark until the issue is resolved.

Exploit

Fix

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

ALT-PU-2025-1412

ALT-PU-2025-3923

BDU:2024-10175

CVE-2024-11595

OPENSUSE-SU-2024:14529-1

OPENSUSE-SU-2024_4142-1

SUSE-SU-2024:4142-1

SUSE-SU-2024_4142-1

SUSE-SU-2026:1169-1

Affected Products

Alt Linux

Astra Linux

Debian

Red Os

Suse

Wireshark

CVE-2024-11595

Weakness Enumeration

Related Identifiers

Affected Products

References · 56