CVE Details for CVE: CVE-2021-4190
Summary
Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file
Timestamps
Last major update 25-03-2022 - 15:09
Published 30-12-2021 - 22:15
Last modified 25-03-2022 - 15:09
Vulnerable Configurations
  • cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
CAPEC
Click the CAPEC title to display a description
  • An attacker performs flooding at the HTTP level to bring down only a particular web application rather than anything listening on a TCP/IP connection. This denial of service attack requires substantially fewer packets to be sent which makes DoS harder to detect. This is an equivalent of SYN flood in HTTP. The idea is to keep the HTTP session alive indefinitely and then repeat that hundreds of times. This attack targets resource depletion weaknesses in web server software. The web server will wait to attacker's responses on the initiated HTTP sessions while the connection threads are being exhausted.
CWE
CVSS
Base
5.0
Impact
2.9
Exploitability
10.0
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
CVSS3
Base
7.5
Impact
3.6
Exploitability
3.9
Access
Attack ComplexityAttack vectorPrivileges RequiredScopeUser Interaction
LOW NETWORK NONE UNCHANGED NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE HIGH
VIA4 references
cvss-vector via4
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3-vector via4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H