Lucene search

K
cveGitLabCVE-2022-0582
HistoryFeb 14, 2022 - 10:15 p.m.

CVE-2022-0582

2022-02-1422:15:07
CWE-476
GitLab
web.nvd.nist.gov
132
2
wireshark
csn.1
protocol dissector
denial of service
cve-2022-0582
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

0.01

Percentile

83.4%

Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

Affected configurations

Nvd
Vulners
Node
wiresharkwiresharkRange3.4.03.4.12
OR
wiresharkwiresharkMatch3.6.0
OR
wiresharkwiresharkMatch3.6.1
Node
fedoraprojectfedoraMatch34
OR
fedoraprojectfedoraMatch35
Node
debiandebian_linuxMatch9.0
VendorProductVersionCPE
wiresharkwireshark3.6.0cpe:/a:wireshark:wireshark:3.6.0:::
wiresharkwireshark3.6.1cpe:/a:wireshark:wireshark:3.6.1:::

CNA Affected

[
  {
    "vendor": "Wireshark Foundation",
    "product": "Wireshark",
    "versions": [
      {
        "version": ">=3.6.0, <3.6.2",
        "status": "affected"
      },
      {
        "version": ">=3.4.0, <3.4.12",
        "status": "affected"
      }
    ]
  }
]

Social References

More

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

0.01

Percentile

83.4%