CVE-2024-9781

Summary

AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file

Affected Software

VendorProductVersion RangeStatus
Wireshark FoundationWireshark4.4.0 < 4.4.1affected
Wireshark FoundationWireshark4.2.0 < 4.2.8affected

Weaknesses

  • CWE-230: CWE-230: Improper Handling of Missing Values

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References