CVE-2024-11596

HIGH

Wireshark <4.4.1, <4.2.9 - DoS

Title source: llm

Description

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file

References (2)

Scores

CVSS v3 7.8
EPSS 0.0002
EPSS Percentile 5.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE
CWE-125 CWE-126
Status published

Affected Products (1)

wireshark/wireshark < 4.2.9

Timeline

Published Nov 21, 2024
Tracked Since Feb 18, 2026