CVE Details for CVE: CVE-2022-3190
Summary
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file
Timestamps | |
---|---|
Last major update | 07-11-2023 - 03:50 |
Published | 13-09-2022 - 15:15 |
Last modified | 07-11-2023 - 03:50 |
References
- https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3190.json
- https://gitlab.com/wireshark/wireshark/-/issues/18307
- https://www.wireshark.org/security/wnpa-sec-2022-06.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YR5LIOF5VKS4DC2NQWXTMPPXOYJC46XC/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CH4NUKZKPY4MFQHFBTONJK2AWES4DFDA/
Vulnerable Configurations
-
cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.0:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.1:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.2:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.3:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.4:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.5:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.6:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.7:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.8:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.9:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.10:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.11:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.11:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.12:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.12:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.13:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.13:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.14:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.14:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.4.15:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.4.15:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.1:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.2:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.3:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.4:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.5:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.6:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:3.6.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:3.6.7:*:*:*:*:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
CWE
CVSS
Base
None
Impact
Exploitability
Access
Vector | Complexity | Authentication |
---|---|---|
Impact
Confidentiality | Integrity | Availability |
---|---|---|
CVSS3
Base
5.5
Impact
3.6
Exploitability
1.8
Access
Attack Complexity | Attack vector | Privileges Required | Scope | User Interaction |
---|---|---|---|---|
LOW | LOCAL | NONE | UNCHANGED | REQUIRED |
Impact
Confidentiality | Integrity | Availability |
---|---|---|
NONE | NONE | HIGH |
VIA4 references
cvss3-vector
via4