Vulnerabilities > CVE-2022-3190 - Infinite Loop vulnerability in multiple products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

wireshark

fedoraproject

CWE-835

NVD

Published: 2022-09-13

Updated: 2023-11-07

Summary

Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

Vulnerable Configurations

Part	Description	Count
Application	Wireshark Wireshark Wireshark 3.4.0 Wireshark Wireshark 3.4.1 Wireshark Wireshark 3.4.2 Wireshark Wireshark 3.4.3 Wireshark Wireshark 3.4.4 Wireshark Wireshark 3.4.5 Wireshark Wireshark 3.4.6 Wireshark Wireshark 3.4.7 Wireshark Wireshark 3.4.8 Wireshark Wireshark 3.4.9 Wireshark Wireshark 3.4.10 Wireshark Wireshark 3.4.11 Wireshark Wireshark 3.4.12 Wireshark Wireshark 3.4.13 Wireshark Wireshark 3.4.14 Wireshark Wireshark 3.4.15 Wireshark Wireshark 3.6.0 Wireshark Wireshark 3.6.1 Wireshark Wireshark 3.6.2 Wireshark Wireshark 3.6.3 Wireshark Wireshark 3.6.4 Wireshark Wireshark 3.6.5 Wireshark Wireshark 3.6.6 Wireshark Wireshark 3.6.7	24
OS	Fedoraproject Fedoraproject Fedora 36 Fedoraproject Fedora 37	2

Common Weakness Enumeration (CWE)

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References