Lucene search

[email protected]NVD:CVE-2021-22173

HistoryFeb 17, 2021 - 3:15 p.m.

CVE-2021-22173

2021-02-1715:15:13

CWE-401

[email protected]

web.nvd.nist.gov

memory leak

usb hid

wireshark

denial of service

packet injection

crafted capture file

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.003

Percentile

68.5%

JSON

Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file

Affected configurations

Nvd

Node

wiresharkwiresharkRange3.4.0–3.4.3

Node

fedoraprojectfedoraMatch32

fedoraprojectfedoraMatch33

Node

oraclezfs_storage_applianceMatch8.8

VendorProductVersionCPE
wiresharkwireshark*cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
fedoraprojectfedora32cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
fedoraprojectfedora33cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
oraclezfs_storage_appliance8.8cpe:2.3:o:oracle:zfs_storage_appliance:8.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wireshark	wireshark	*	cpe:2.3:a:wireshark:wireshark::::::::
fedoraproject	fedora	32	cpe:2.3:o:fedoraproject:fedora:32:::::::*
fedoraproject	fedora	33	cpe:2.3:o:fedoraproject:fedora:33:::::::*
oracle	zfs_storage_appliance	8.8	cpe:2.3:o:oracle:zfs_storage_appliance:8.8:::::::*