ID CVE-2022-0581
Summary Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
References
Vulnerable Configurations
  • cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.11:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.11:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.6.1:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 08-08-2023 - 14:22)
Impact:
Exploitability:
CWE CWE-416
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
Last major update 08-08-2023 - 14:22
Published 14-02-2022 - 22:15
Last modified 08-08-2023 - 14:22
Back to Top