Описание
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| wireshark | fixed | 4.2.2-1 | package | |
| wireshark | not-affected | bookworm | package | |
| wireshark | not-affected | bullseye | package | |
| wireshark | not-affected | buster | package |
Примечания
https://www.wireshark.org/security/wnpa-sec-2024-04.html
https://gitlab.com/wireshark/wireshark/-/issues/19504
EPSS
Процентиль: 22%
0.00074
Низкий
Связанные уязвимости
CVSS3: 7.8
ubuntu
около 2 лет назад
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
CVSS3: 5.5
redhat
около 2 лет назад
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
CVSS3: 7.8
nvd
около 2 лет назад
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
CVSS3: 7.8
github
около 2 лет назад
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
EPSS
Процентиль: 22%
0.00074
Низкий