Home > Vulnerability Database > CVE-2022-3190

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2022-3190

Date: September 12, 2022

Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

Language: C

Severity Score

6.3

Related Resources (11)

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YR5LIOF5VKS4DC2NQWXTMPPXOYJC46XC/

Url: https://www.wireshark.org/security/wnpa-sec-2022-06.html

Url: https://access.redhat.com/security/cve/CVE-2022-3190

Url: https://security-tracker.debian.org/tracker/CVE-2022-3190

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-3190

Url: https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3190.json

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CH4NUKZKPY4MFQHFBTONJK2AWES4DFDA/

Url: https://gitlab.com/wireshark/wireshark/-/issues/18307

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CH4NUKZKPY4MFQHFBTONJK2AWES4DFDA/

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YR5LIOF5VKS4DC2NQWXTMPPXOYJC46XC/

Url: https://www.mend.io/vulnerability-database/CVE-2022-3190

Severity Score

6.3

Weakness Type (CWE)

Loop with Unreachable Exit Condition ('Infinite Loop')

CWE-835

CVSS v3.1

Base Score:	6.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

Do you need more information?

Contact Us