[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252097

 
 

909

 
 

196747

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2022-0583Date: (C)2022-02-16   (M)2023-12-22


Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 7.5CVSS Score : 5.0
Exploit Score: 3.9Exploit Score: 10.0
Impact Score: 3.6Impact Score: 2.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: NETWORKAccess Vector: NETWORK
Attack Complexity: LOWAccess Complexity: LOW
Privileges Required: NONEAuthentication: NONE
User Interaction: NONEConfidentiality: NONE
Scope: UNCHANGEDIntegrity: NONE
Confidentiality: NONEAvailability: PARTIAL
Integrity: NONE 
Availability: HIGH 
  
Reference:
FEDORA-2022-5a3603afe0
FEDORA-2022-e29665a42b
GLSA-202210-04
https://lists.debian.org/debian-lts-announce/2022/03/msg00041.html
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0583.json
https://gitlab.com/wireshark/wireshark/-/issues/17840
https://www.wireshark.org/security/wnpa-sec-2022-03.html

CPE    2
cpe:/o:debian:debian_linux:9.0
cpe:/a:wireshark:wireshark
CWE    1
CWE-787
OVAL    9
oval:org.secpod.oval:def:77839
oval:org.secpod.oval:def:3300909
oval:org.secpod.oval:def:19500156
oval:org.secpod.oval:def:121705
...

© SecPod Technologies