CVE-2022-3725

Опубликовано: 27 окт. 2022

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file

A vulnerability was found in Wireshark. This flaw causes a crash in the OPUS protocol dissector in Wireshark, leading to a denial of service via packet injection or a crafted capture file.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected
Red Hat Enterprise Linux 9	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=2138742wireshark: OPUS dissector crash

EPSS

Процентиль: 21%

0.00067

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-3725

CVSS3: 6.3

ubuntu

больше 3 лет назад

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file

CVE-2022-3725

CVSS3: 6.3

nvd

больше 3 лет назад

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file

CVE-2022-3725

CVSS3: 6.3

debian

больше 3 лет назад

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allow ...

SUSE-SU-2022:4453-1

suse-cvrf

около 3 лет назад

Security update for wireshark

GHSA-3r9v-jg25-4p3p

CVSS3: 7.5

github

больше 3 лет назад

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file

EPSS

Процентиль: 21%

0.00067

Низкий

7.5 High

CVSS3