CVE-2024-8645

MEDIUM

Wireshark <4.2.0-4.0.15 - DoS

Title source: llm

Description

SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file

References (3)

Scores

CVSS v3 5.5
EPSS 0.0006
EPSS Percentile 18.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE
CWE-824
Status published

Affected Products (1)

wireshark/wireshark < 4.0.16

Timeline

Published Sep 10, 2024
Tracked Since Feb 18, 2026