CVE-2021-39928

December 11, 2021

NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Summary:

NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Reference Links(if available):

  • https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39928.json
  • https://www.wireshark.org/security/wnpa-sec-2021-13.html
  • https://gitlab.com/wireshark/wireshark/-/issues/17704
  • https://lists.fedoraproject.org/archives/list/[email protected]/message/A6AJFIYIHS3TYDD2EBYBJ5KKE52X34BJ/
  • https://lists.fedoraproject.org/archives/list/[email protected]/message/YEWTIRMC2MFQBZ2O5M4CJHJM4JPBHLXH/

    • CVSS Score (if available)

    v2: / MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P

    v3: / HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

    Links to Exploits(if available)

  • You may have missed

    CISA Logo

    CISA: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage

    November 23, 2024
    CISA Logo

    CISA: CISA Releases Three Industrial Control Systems Advisories

    November 23, 2024
    CISA Logo

    CISA: Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation

    November 23, 2024
    CISA Logo

    CISA: Foreign Threat Actor Conducting Large-Scale Spearphishing Campaign with RDP Attachments

    November 23, 2024
    CISA Logo

    CISA: CISA Releases Four Industrial Control Systems Advisories

    November 23, 2024