{"containers":{"cna":{"affected":[{"product":"Wireshark","vendor":"The Wireshark Foundation","versions":[{"status":"affected","version":">=3.4.0, <3.4.3"}]}],"descriptions":[{"lang":"en","value":"Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file"}],"metrics":[{"cvssV3_1":{"attackComplexity":"HIGH","attackVector":"NETWORK","availabilityImpact":"LOW","baseScore":3.7,"baseSeverity":"LOW","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","version":"3.1"}}],"problemTypes":[{"descriptions":[{"description":"Missing release of memory after effective lifetime in Wireshark","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2021-07-09T08:08:20.000Z","orgId":"ceab7361-8a18-47b1-92ba-4d7d25f6715a","shortName":"GitLab"},"references":[{"tags":["x_refsource_MISC"],"url":"https://www.wireshark.org/security/wnpa-sec-2021-01.html"},{"tags":["x_refsource_MISC"],"url":"https://gitlab.com/wireshark/wireshark/-/issues/17124"},{"tags":["x_refsource_CONFIRM"],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22173.json"},{"name":"FEDORA-2021-f22ce64b3b","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GND3PIQC3KZALR227V4YUMPKJBA5BZG4/"},{"name":"FEDORA-2021-5522a34aa0","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYXLKQJ3D632XSG6VO7M4YFDAG6GRCLY/"},{"tags":["x_refsource_MISC"],"url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"name":"GLSA-202107-21","tags":["vendor-advisory","x_refsource_GENTOO"],"url":"https://security.gentoo.org/glsa/202107-21"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@gitlab.com","ID":"CVE-2021-22173","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Wireshark","version":{"version_data":[{"version_value":">=3.4.0, <3.4.3"}]}}]},"vendor_name":"The Wireshark Foundation"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file"}]},"impact":{"cvss":{"attackComplexity":"HIGH","attackVector":"NETWORK","availabilityImpact":"LOW","baseScore":3.6,"baseSeverity":"LOW","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Missing release of memory after effective lifetime in Wireshark"}]}]},"references":{"reference_data":[{"name":"https://www.wireshark.org/security/wnpa-sec-2021-01.html","refsource":"MISC","url":"https://www.wireshark.org/security/wnpa-sec-2021-01.html"},{"name":"https://gitlab.com/wireshark/wireshark/-/issues/17124","refsource":"MISC","url":"https://gitlab.com/wireshark/wireshark/-/issues/17124"},{"name":"https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22173.json","refsource":"CONFIRM","url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22173.json"},{"name":"FEDORA-2021-f22ce64b3b","refsource":"FEDORA","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GND3PIQC3KZALR227V4YUMPKJBA5BZG4/"},{"name":"FEDORA-2021-5522a34aa0","refsource":"FEDORA","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYXLKQJ3D632XSG6VO7M4YFDAG6GRCLY/"},{"name":"https://www.oracle.com/security-alerts/cpuApr2021.html","refsource":"MISC","url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"name":"GLSA-202107-21","refsource":"GENTOO","url":"https://security.gentoo.org/glsa/202107-21"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T18:37:17.473Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.wireshark.org/security/wnpa-sec-2021-01.html"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://gitlab.com/wireshark/wireshark/-/issues/17124"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22173.json"},{"name":"FEDORA-2021-f22ce64b3b","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GND3PIQC3KZALR227V4YUMPKJBA5BZG4/"},{"name":"FEDORA-2021-5522a34aa0","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYXLKQJ3D632XSG6VO7M4YFDAG6GRCLY/"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"name":"GLSA-202107-21","tags":["vendor-advisory","x_refsource_GENTOO","x_transferred"],"url":"https://security.gentoo.org/glsa/202107-21"}]}]},"cveMetadata":{"assignerOrgId":"ceab7361-8a18-47b1-92ba-4d7d25f6715a","assignerShortName":"GitLab","cveId":"CVE-2021-22173","datePublished":"2021-02-17T14:26:20.000Z","dateReserved":"2021-01-05T00:00:00.000Z","dateUpdated":"2024-08-03T18:37:17.473Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}