CVE-2024-8250

HIGH

Wireshark <4.2.0-4.0.16 - DoS

Title source: llm

Description

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file

References (3)

Scores

CVSS v3 7.8
EPSS 0.0003
EPSS Percentile 8.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE
CWE-825 CWE-787
Status published

Affected Products (1)

wireshark/wireshark < 4.0.17

Timeline

Published Aug 29, 2024
Tracked Since Feb 18, 2026