CVE-2021-22191 — Injection in Wireshark

CWE-74 — Injection CWE-20 — Improper Input Validation6 documents6 sources

Severity

8.8HIGHNVD

CNA6.3

EPSS

0.3%

top 49.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark THE Wireshark Foundation Wireshark Debian Linux +1 more

Timeline

PublishedMar 15

Latest updateMay 24

Description

Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

▶Debianwireshark/wireshark< 3.4.4-1+3

▶NVDwireshark/wireshark3.2.0 — 3.2.11+1

▶CVEListV5the_wireshark_foundation/wireshark>=3.2.0, <3.2.12, >=3.4.0, <3.4.4+1

▶NVDoracle/zfs_storage_appliance8.8

Also affects: Debian Linux 9.0

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-w6w5-wrcg-5jrx: Improper URL handling in Wireshark 3↗2022-05-24

▶

CVEList

CVE-2021-22191: Improper URL handling in Wireshark 3↗2021-03-15

▶

OSV

CVE-2021-22191: Improper URL handling in Wireshark 3↗2021-03-15

▶

📋Vendor Advisories

Red Hat

wireshark: improper URL handling may lead to remote code execution↗2021-03-11

▶

Debian

CVE-2021-22191: wireshark - Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allo...↗2021

▶