ID CVE-2022-0585
Summary Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file
References
Vulnerable Configurations
  • cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.11:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.11:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.6.1:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 04-11-2022 - 19:40)
Impact:
Exploitability:
CWE CWE-834
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
Last major update 04-11-2022 - 19:40
Published 18-02-2022 - 18:15
Last modified 04-11-2022 - 19:40
Back to Top