KLA12355
Multiple vulnerabilities in Wireshark

Updated: 11/25/2021
Detect date
?
11/17/2021
Severity
?
Warning
Description

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. Denial of service vulnerability in Bluetooth HCI_ISO dissector can be exploited via special crafted packet to cause denial of service.
  2. Denial of service vulnerability in IPPUSB dissector can be exploited via special crafted packet to cause denial of service.
Affected products

Wireshark 3.4.x earlier than 3.4.10

Solution

Update to the latest version
Download Wireshark

Original advisories

Bluetooth HCI_ISO dissector crash
IPPUSB dissector crash

Impacts
?
DoS 
[?]
Related products
Wireshark
CVE-IDS
?
CVE-2021-399260.0Unknown
CVE-2021-399200.0Unknown
Find out the statistics of the vulnerabilities spreading in your region