Vulnerability DatabaseCVE-2024-24478

CVE-2024-24478:
Wireshark vulnerability analysis and mitigation

Overview

An issue in Wireshark before version 4.2.0 was reported as CVE-2024-24478, which potentially allows a remote attacker to cause a denial of service through the packet-bgp.c file, specifically in the dissect_bgp_open(tvbuff_ttvb, proto_treetree, packet_info*pinfo) function's optlen components. However, this vulnerability is disputed by the vendor, who states that neither release 4.2.0 nor any other release was affected (CVE Details).

Technical details

The vulnerability was initially reported as an integer overflow issue in the BGP dissector component of Wireshark, specifically related to the handling of the extended option length in RFC 9072. The issue was addressed by storing the option length in a 16-bit integer to prevent stepping the offset by the wrong value due to overflow (GitHub Commit).

Impact

The reported vulnerability could potentially lead to a denial of service condition if successfully exploited (Gist Report).

Mitigation and workarounds

Since the vulnerability is disputed by the vendor and reportedly did not affect any released versions, no specific mitigation steps are required. The code changes made were preventive in nature, implementing proper integer handling for BGP option length processing (GitHub Commit).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Watch 12-min demo

7.5

Score

Published February 21, 2024

Severity HIGH

CNA Score 7.5

Affected Technologies

Wireshark
Amazon Linux

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 50.8

Exploitation Probability (EPSS) 0.3

Affected packages and libraries

wireshark-cli
wireshark-cli-debuginfo

Sources

Alpine Security Tracker
- Alpine 3.10, 3.11, 3.12, 3.19 Severity HIGHNo FixAdded at: Nov 18, 2025
- Alpine 3.13, 3.14, 3.15, 3.16, 3.17, 3.18 Severity HIGHNo FixAdded at: Apr 17, 2025
CBL-Mariner
- CBL-Mariner 3.0 Severity HIGHHas FixAdded at: Jul 12, 2025
Homebrew
- Homebrew Severity HIGHHas FixAdded at: Apr 15, 2025
NVD
- Linux Severity HIGHHas FixAdded at: Oct 09, 2024
- Windows Severity HIGHHas FixAdded at: Feb 28, 2024

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Wireshark vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-13946	MEDIUM	5.5	Wireshark	wireshark-cli	No	Yes	Dec 03, 2025
CVE-2025-13945	MEDIUM	5.5	Wireshark	wireshark	No	Yes	Dec 03, 2025
CVE-2025-13674	MEDIUM	5.5	Wireshark	wireshark-debuginfo	No	Yes	Nov 26, 2025
CVE-2025-13499	MEDIUM	5.5	Wireshark	wireshark	No	Yes	Nov 21, 2025
CVE-2025-11626	MEDIUM	5.5	Wireshark	wireshark-devel	No	Yes	Oct 10, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2024-24478: Wireshark vulnerability analysis and mitigation