Detections
Analytics
Wireshark 3.4.x < 3.4.12 Multiple Vulnerabilities
critical Nessus Plugin ID 157893
Language:
Synopsis
An application installed on the remote Windows host is affected by multiple vulnerabilities.Description
The version of Wireshark installed on the remote Windows host is prior to 3.4.12. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.4.12 advisory.- Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file (CVE-2022-0582)
- Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file (CVE-2021-4190)
- Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file (CVE-2022-0586)
- Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file (CVE-2022-0585)
- Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file (CVE-2022-0583)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Wireshark version 3.4.12 or later.See Also
https://gitlab.com/wireshark/wireshark/-/issues/17811
https://gitlab.com/wireshark/wireshark/-/issues/17813
https://gitlab.com/wireshark/wireshark/-/issues/17829
https://gitlab.com/wireshark/wireshark/-/issues/17840
https://gitlab.com/wireshark/wireshark/-/issues/17842
https://gitlab.com/wireshark/wireshark/-/issues/17847
https://gitlab.com/wireshark/wireshark/-/issues/17855
https://gitlab.com/wireshark/wireshark/-/issues/17882
https://gitlab.com/wireshark/wireshark/-/issues/17891
https://gitlab.com/wireshark/wireshark/-/issues/17925
https://gitlab.com/wireshark/wireshark/-/issues/17926
https://gitlab.com/wireshark/wireshark/-/issues/17931
https://gitlab.com/wireshark/wireshark/-/issues/17932
https://gitlab.com/wireshark/wireshark/-/issues/17933
https://gitlab.com/wireshark/wireshark/-/issues/17935
https://www.wireshark.org/docs/relnotes/wireshark-3.4.12.html
https://www.wireshark.org/security/wnpa-sec-2021-22
https://www.wireshark.org/security/wnpa-sec-2022-01
https://www.wireshark.org/security/wnpa-sec-2022-02
https://www.wireshark.org/security/wnpa-sec-2022-03
Plugin Details
Severity: Critical
ID: 157893
File Name: wireshark_3_4_12.nasl
Version: 1.8
Type: Local
Agent: windows
Family: Windows
Published: 2/11/2022
Updated: 5/1/2026
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2022-0582
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:wireshark:wireshark
Required KB Items: SMB/Registry/Enumerated, installed_sw/Wireshark
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 12/29/2021
Vulnerability Publication Date: 12/29/2021
Reference Information
CVE: CVE-2021-4190, CVE-2022-0581, CVE-2022-0582, CVE-2022-0583, CVE-2022-0585, CVE-2022-0586
IAVB: 2022-B-0004-S