Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA62768
HistoryJan 03, 2024 - 12:00 a.m.

KLA62768 Multiple vulnerabilities in Wireshark

2024-01-0300:00:00
Kaspersky Lab
threats.kaspersky.com
11
wireshark
vulnerabilities
dos
exploitation
update
cve-2024-0207
cve-2024-0210

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. Denial of service vulnerability in HTTP3 dissector can be exploited to cause denial of service.
  2. Denial of service vulnerability in Zigbee TLV dissector can be exploited to cause denial of service.

Original advisories

Wireshark • wnpa-sec-2024-03 HTTP3 dissector crash

Wireshark • wnpa-sec-2024-04 Zigbee TLV dissector crash

Exploitation

Public exploits exist for this vulnerability.

Related products

Wireshark

CVE list

CVE-2024-0207 warning

CVE-2024-0210 warning

Solution

Update to the latest version

Download Wireshark

Impacts

  • DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Affected Products

  • Wireshark 4.2.x earlier than 4.2.1

Related

openvas 4
redhatcve 2
nvd 2
nessus 3
debiancve 2
cvelist 2
cve 2
osv 4
prion 2
veracode 2
ubuntucve 2
openvas
openvas
Wireshark Multiple Vulnerabilities (Jul 2024) - Mac OS X
2024-07-16 00:00:00
Wireshark Multiple Vulnerabilities (Jul 2024) - Linux
2024-07-16 00:00:00
Wireshark Multiple Vulnerabilities (Jul 2024) - Windows
2024-07-16 00:00:00
redhatcve
redhatcve
CVE-2024-0210
2024-01-03 17:03:40
CVE-2024-0207
2024-01-03 17:32:03
nvd
nvd
CVE-2024-0207
2024-01-03 08:15:10
CVE-2024-0210
2024-01-03 08:15:11
nessus
nessus
Wireshark 4.2.x < 4.2.1 Multiple Vulnerabilities
2024-01-03 00:00:00
Wireshark 4.2.x < 4.2.1 Multiple Vulnerabilities (macOS)
2024-01-03 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : wireshark (SUSE-SU-2024:3165-1)
2024-09-10 00:00:00
debiancve
debiancve
CVE-2024-0210
2024-01-03 08:15:11
CVE-2024-0207
2024-01-03 08:15:10
cvelist
cvelist
CVE-2024-0210 Uncontrolled Recursion in Wireshark
2024-01-03 07:31:25
CVE-2024-0207 Out-of-bounds Read in Wireshark
2024-01-03 07:31:10
cve
cve
CVE-2024-0210
2024-01-03 08:15:11
CVE-2024-0207
2024-01-03 08:15:10
osv
osv
CVE-2024-0210
2024-01-03 08:15:11
CVE-2024-0207
2024-01-03 08:15:10
libwireshark17-4.2.1-1.1 on GA media
2024-06-15 00:00:00
prion
prion
Design/Logic Flaw
2024-01-03 08:15:00
Design/Logic Flaw
2024-01-03 08:15:00
veracode
veracode
Uncontrolled Recursion (Denial Of Service)
2024-01-13 07:19:11
Uncontrolled Recursion (Denial Of Service)
2024-01-13 07:17:06
ubuntucve
ubuntucve
CVE-2024-0207
2024-01-03 00:00:00
CVE-2024-0210
2024-01-03 00:00:00

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON
Related for KLA62768
openvas4redhatcve2nvd2nessus3debiancve2cvelist2cve2osv4prion2veracode2ubuntucve2