← Back

CVE-2021-22174

nvd nist
Published: Feb 17, 2021Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file

Affected (4)

Wireshark
1 product
Wireshark
Fedoraproject
1 product
Fedora
Oracle
1 product
Zfs Storage Appliance
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Wireshark
From 3.4.0 to 3.4.3
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Fedoraproject
Fedora
Version 32
Fedora
Version 33
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Zfs Storage Appliance
Version 8.8

Related CWEs

CWE-770
Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (14)

Source: cve@gitlab.com
Third Party Advisory
Source: cve@gitlab.com
ExploitThird Party Advisory
Source: cve@gitlab.com
Source: cve@gitlab.com
Source: cve@gitlab.com
Third Party Advisory
Source: cve@gitlab.com
PatchThird Party Advisory
Source: cve@gitlab.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.