Vulnerabilities > CVE-2024-9780 - Missing Initialization of Resource vulnerability in Wireshark 4.4.0

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
wireshark
CWE-909
NVD
Published: 2024-10-10
Updated: 2024-10-17

Summary

ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file

Vulnerable Configurations

Part Description Count
Application
Wireshark
1

Common Weakness Enumeration (CWE)

References