CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19622

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2018-19622

Wireshark » Wireshark » Version: 2.4.0

cpe:2.3:a:wireshark:wireshark:2.4.0
Wireshark » Wireshark » Version: 2.4.1

cpe:2.3:a:wireshark:wireshark:2.4.1
Wireshark » Wireshark » Version: 2.4.10

cpe:2.3:a:wireshark:wireshark:2.4.10
Wireshark » Wireshark » Version: 2.4.2

cpe:2.3:a:wireshark:wireshark:2.4.2
Wireshark » Wireshark » Version: 2.4.3

cpe:2.3:a:wireshark:wireshark:2.4.3
Wireshark » Wireshark » Version: 2.4.4

cpe:2.3:a:wireshark:wireshark:2.4.4
Wireshark » Wireshark » Version: 2.4.5

cpe:2.3:a:wireshark:wireshark:2.4.5
Wireshark » Wireshark » Version: 2.4.6

cpe:2.3:a:wireshark:wireshark:2.4.6
Wireshark » Wireshark » Version: 2.4.7

cpe:2.3:a:wireshark:wireshark:2.4.7
Wireshark » Wireshark » Version: 2.4.8

cpe:2.3:a:wireshark:wireshark:2.4.8
Wireshark » Wireshark » Version: 2.4.9

cpe:2.3:a:wireshark:wireshark:2.4.9
Wireshark » Wireshark » Version: 2.6.0

cpe:2.3:a:wireshark:wireshark:2.6.0
Wireshark » Wireshark » Version: 2.6.1

cpe:2.3:a:wireshark:wireshark:2.6.1
Wireshark » Wireshark » Version: 2.6.2

cpe:2.3:a:wireshark:wireshark:2.6.2
Wireshark » Wireshark » Version: 2.6.3

cpe:2.3:a:wireshark:wireshark:2.6.3
Wireshark » Wireshark » Version: 2.6.4

cpe:2.3:a:wireshark:wireshark:2.6.4
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19622

Products

Pricing

Contact Us