CVE-2024-8250 — Expired Pointer Dereference in Foundation Wireshark

CWE-825 — Expired Pointer Dereference CWE-787 — Out-of-bounds Write CWE-369 — Divide By Zero CWE-432 — Dangerous Signal Handler not Disabled During Sensitive Operations CWE-99 — Resource Injection11 documents7 sources

Severity

5.5MEDIUMNVD

CNA7.8

EPSS

0.0%

top 90.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Foundation Wireshark Wireshark

Timeline

PublishedAug 29

Latest updateSep 13

Description

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶NVDwireshark/wireshark4.0.0 — 4.0.17+1

▶CVEListV5wireshark_foundation/wireshark4.2.0 — 4.2.7+1

▶Debianwireshark/wireshark< 3.4.16-0+deb11u1+3

🔴Vulnerability Details

GHSA

GHSA-4xqj-427q-hf6q: NTLMSSP dissector crash in Wireshark 4↗2024-08-29

▶

OSV

CVE-2024-8250: NTLMSSP dissector crash in Wireshark 4↗2024-08-29

▶

CVEList

Expired Pointer Dereference in Wireshark↗2024-08-28

▶

📋Vendor Advisories

Red Hat

kernel: Revert "serial: 8250_omap: Set the console genpd always on if no console suspend"↗2024-09-13

▶

Red Hat

wireshark: NTLMSSP dissector crash↗2024-08-29

▶

Microsoft

Expired Pointer Dereference in Wireshark↗2024-08-13

▶

Red Hat

kernel: serial: 8250_omap: Implementation of Errata i2310↗2024-07-29

▶

Debian

CVE-2024-8250: wireshark - NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows d...↗2024

▶