EPSS
Percentile
49.3%
In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a NULL DACL, which allows attackers to modify the access control arbitrarily.
bugzilla.redhat.com/show_bug.cgi?id=1609948
www.cve.org/CVERecord?id=CVE-2018-14438 https://nvd.nist.gov/vuln/detail/CVE-2018-14438