Lucene search
Redhat.comRH:CVE-2024-4854HistoryMay 15, 2024 - 10:24 p.m.
CVE-2024-4854
2024-05-1522:24:58
redhat.com
access.redhat.com
17
wireshark
denial of service
packet injection
crafted capture file
cve-2024-4854
mongo
zigbee
tlv dissector
infinite loops
A flaw was found in the MONGO and ZigBee TLV dissectors of Wireshark. This issue occurs when decoding malformed packets from a pcap file or from the network, causing an infinite loop, resulting in a denial of service.
Mitigation
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Related
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2024-4854
2024-05-14 00:00:00
debiancve
debiancve
CVE-2024-4854
2024-05-14 15:45:18
cve
cve
CVE-2024-4854
2024-05-14 15:45:18
alpinelinux
alpinelinux
CVE-2024-4854
2024-05-14 15:45:18
nessus
nessus
Wireshark 3.6.x < 3.6.23 Multiple Vulnerabilities (macOS)
2024-05-15 00:00:00
Wireshark 3.6.x < 3.6.23 Multiple Vulnerabilities
2024-05-15 00:00:00
Wireshark 4.2.x < 4.2.5 Multiple Vulnerabilities (macOS)
2024-05-15 00:00:00