CVE-2024-0211

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 3, 2024

Updated: Jan 10, 2024

CWE ID 674

Summary

CVE-2024-0211 is a denial-of-service vulnerability affecting Wireshark version 4.2.0. This issue arises from a problem in the DOCSIS dissector, causing the tool to crash when processing maliciously crafted packets or capture files. An attacker can exploit this vulnerability by injecting malicious packets or using crafted capture files to trigger the crash. This can result in Wireshark becoming unresponsive or requiring a manual restart, impacting network analysis and monitoring activities.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Wireshark

Affected Vendors

Wireshark Foundation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uAgKBe
https://www.cve.org/CVERecord?id=CVE-2024-0211
https://nvd.nist.gov/vuln/detail/CVE-2024-0211

Back to Vulnerability Database