CVE-2024-4853
Mismatched Memory Management Routines in editcap
CVSS Score
3.6
EPSS Score
0.1%
EPSS Percentile
19th
Memory handling issue in editcap could cause denial of service via crafted capture file
| CWE | CWE-762 |
| Vendor | wireshark foundation |
| Product | editcap |
| Published | May 14, 2024 |
| Last Updated | Mar 27, 2026 |
Stay Ahead of the Next One
Get instant alerts for wireshark foundation editcap
Be the first to know when new low vulnerabilities affecting wireshark foundation editcap are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L Attack Vector
Local
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
Low
Affected Versions
Wireshark Foundation / editcap
4.2.0 < 4.2.5 4.0.0 < 4.0.15 3.6.0 < 3.6.23
References
wireshark.org: https://www.wireshark.org/security/wnpa-sec-2024-08.html gitlab.com: https://gitlab.com/wireshark/wireshark/-/issues/19724 lists.fedoraproject.org: https://lists.fedoraproject.org/archives/list/[email protected]/message/66H2BSENPSIALF2WIZF7M3QBVWYBMFGW/ lists.fedoraproject.org: https://lists.fedoraproject.org/archives/list/[email protected]/message/7MKFJAZDKXGFFQPRDYLX2AANRNMYZZEZ/ lists.debian.org: https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html
Credits
Dawei Wang and Geng Zhou, from Zhongguancun Laboratory.