NTLMSSP Dissector Denial of Service Vulnerability
CVE-2024-8250

5.5MEDIUM

Key Information:

What is CVE-2024-8250?

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file

Wireshark 4.2.0 < 4.2.7

Wireshark 4.0.0 < 4.0.17

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet