CVE-2022-4345

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-4345
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-4345.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-4345
Downstream
Related
Published
2023-01-12T00:00:00Z
Modified
2026-04-11T12:41:06.661275Z
Severity
  • 6.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVSS Calculator
Summary
[none]
Details

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

Database specific 
{
    "cna_assigner": "GitLab",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/4xxx/CVE-2022-4345.json",
    "unresolved_ranges": [
        {
            "source": "AFFECTED_FIELD",
            "extracted_events": [
                {
                    "introduced": "4.0.0"
                },
                {
                    "fixed": "4.0.2"
                },
                {
                    "introduced": "3.6.0"
                },
                {
                    "fixed": "3.6.10"
                }
            ]
        }
    ]
}
References

Affected packages

Git / github.com/wireshark/wireshark

Affected ranges

Type
GIT
Repo
https://github.com/wireshark/wireshark
Events
Introduced
3a34e44d02c9c91f9f851bd6f29ff4505131b127
Fixed
1c21cf400821d986756d23e04a2bb9cdc095a98f
Introduced
0cbe09cd796b2ea24c6069b76ea16df7f51cf67b
Fixed
415456d133701e83d2f0aac3d90f26879fb3dad1
Database specific 
{
    "source": "CPE_FIELD",
    "extracted_events": [
        {
            "introduced": "3.6.0"
        },
        {
            "fixed": "3.6.10"
        },
        {
            "introduced": "4.0.0"
        },
        {
            "fixed": "4.0.2"
        }
    ],
    "cpe": "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*"
}

Affected versions

v3.*
v3.6.0
v3.6.1
v3.6.10rc0
v3.6.1rc0
v3.6.2
v3.6.2rc0
v3.6.3
v3.6.3rc0
v3.6.4
v3.6.4rc0
v3.6.5
v3.6.5rc0
v3.6.6
v3.6.6rc0
v3.6.7
v3.6.7rc0
v3.6.8
v3.6.8rc0
v3.6.9
v3.6.9rc0
v4.*
v4.0.0
v4.0.1
v4.0.1rc0
v4.0.2rc0
wireshark-3.*
wireshark-3.6.0
wireshark-3.6.1
wireshark-3.6.2
wireshark-3.6.3
wireshark-3.6.4
wireshark-3.6.5
wireshark-3.6.6
wireshark-3.6.7
wireshark-3.6.8
wireshark-3.6.9
wireshark-4.*
wireshark-4.0.0
wireshark-4.0.1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-4345.json"