PT-2023-14207 · Wireshark+3 · Wireshark+3

Sharon Brizinov

Published

2023-01-05

Updated

2025-09-29

CVE-2022-4345

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Wireshark versions 3.6.0 through 3.6.9 Wireshark versions 4.0.0 through 4.0.1

Description Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark allow denial of service via packet injection or crafted capture file.

Recommendations For Wireshark versions 3.6.0 through 3.6.9, update to a version that fixes the infinite loop issue in the BPv6, OpenFlow, and Kafka protocol dissectors. For Wireshark versions 4.0.0 through 4.0.1, update to a version that fixes the infinite loop issue in the BPv6, OpenFlow, and Kafka protocol dissectors.

Exploit

Fix

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

ALSA-2025_16880

ALT-PU-2023-1009

ALT-PU-2023-1036

ALT-PU-2023-1062

ALT-PU-2023-5823

CVE-2022-4345

DLA-3313-1

DLA-3906-1

OESA-2023-1094

OESA-2023-1115

OPENSUSE-SU-2023_0343-1

OPENSUSE-SU-2024:12647-1

ROSA-SA-2023-2257

SUSE-SU-2023:0343-1

SUSE-SU-2023_0343-1

Affected Products

Alt Linux

Astra Linux

Suse

Wireshark

PT-2023-14207 · Wireshark+3 · Wireshark+3

CVE-2022-4345

Weakness Enumeration

Related Identifiers

Affected Products

References · 50