NULL Pointer Dereference in Wireshark
CVE-2024-0209
7.8HIGH
What is CVE-2024-0209?
A vulnerability exists within specific versions of Wireshark, linked to an IEEE 1609.2 dissector that can be exploited to cause a denial of service. Attackers can leverage packet injection or utilize specially crafted capture files to trigger a crash in the application. This could disrupt the operational capabilities of Wireshark, leading to significant risks for users relying on this essential network protocol analyzer.
Affected Version(s)
Wireshark 4.2.0 < 4.2.1
Wireshark 4.0.0 < 4.0.12
Wireshark 3.6.0 < 3.6.20