Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-3190

Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

Published

2022-09-13T15:15:09.323

Last Modified

2024-11-21T07:19:00.663

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.3 (MEDIUM)

Weaknesses

Type: Primary
CWE-835

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	wireshark	wireshark	< 3.4.16	Yes
Application	wireshark	wireshark	< 3.6.8	Yes
Operating System	fedoraproject	fedora	36	Yes
Operating System	fedoraproject	fedora	37	Yes

References

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3190.json Third Party Advisory, VDB Entry ([email protected])
https://gitlab.com/wireshark/wireshark/-/issues/18307 Exploit, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CH4NUKZKPY4MFQHFBTONJK2AWES4DFDA/ ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YR5LIOF5VKS4DC2NQWXTMPPXOYJC46XC/ ([email protected])
https://www.wireshark.org/security/wnpa-sec-2022-06.html Exploit, Issue Tracking, Third Party Advisory ([email protected])
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3190.json Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://gitlab.com/wireshark/wireshark/-/issues/18307 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CH4NUKZKPY4MFQHFBTONJK2AWES4DFDA/ (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YR5LIOF5VKS4DC2NQWXTMPPXOYJC46XC/ (af854a3a-2127-422b-91ae-364da2661108)
https://www.wireshark.org/security/wnpa-sec-2022-06.html Exploit, Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)