vendor:
Wireshark
by:
Google Security Research
7.5
CVSS
HIGH
Out-of-Bounds Read
CWE
Product Name: Wireshark
Affected Version From: Wireshark current git master
Affected Version To: Wireshark current git master
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
Wireshark Out-of-Bounds Read Vulnerability
The vulnerability is caused by an out-of-bounds read from static memory in Wireshark. It can be triggered by feeding a malformed file to tshark.
Mitigation:
Update to the latest version of Wireshark.