7.8
CVE-2024-9780
- EPSS 0.02%
- Published 10.10.2024 07:15:03
- Last modified 17.10.2024 14:18:18
- Source cve@gitlab.com
- Teams watchlist Login
- Open Login
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.02 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
|
| cve@gitlab.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
CWE-456 Missing Initialization of a Variable
The product does not initialize critical variables, which causes the execution environment to use unexpected values.
CWE-909 Missing Initialization of Resource
The product does not initialize a critical resource.