Home

CVE-2021-4190

Description

Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.12

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2021-4181,CVE-2021-4182,CVE-2021-4183,CVE-2021-4184,CVE-2021-4185 are fixed in Wireshark (3.6.1)Windows
Vulnerabilities CVE-2021-4181,CVE-2021-4182,CVE-2021-4183,CVE-2021-4184,CVE-2021-4185 are fixed in Wireshark (X64) (3.6.1)Windows
Multiple Vulnerabilities are affected in WireShark For Mac 3.6.0Mac
Multiple Vulnerabilities are affected in WireShark For Mac 3.4.11Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-323050Wireshark (3.6.1)
PATCH-323051Wireshark (X64) (3.6.1)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234