CVE-2021-39923 : Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet inj

Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Published 2021-11-19 17:15:08

Updated 2022-03-09 21:42:08

Source GitLab Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2021-39923

Probability of exploitation activity in the next 30 days: 0.13%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 47 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2021-39923

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	GitLab Inc.
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2021-39923

CWE-834 Excessive Iteration

The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-39923

https://gitlab.com/wireshark/wireshark/-/issues/17684

Buildbot crash output: fuzz-2021-10-23-10060.pcap (#17684) · Issues · Wireshark Foundation / wireshark · GitLab
Issue Tracking;Patch;Vendor Advisory
https://lists.debian.org/debian-lts-announce/2021/12/msg00015.html

[SECURITY] [DLA 2849-1] wireshark security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39923.json

2021/CVE-2021-39923.json · master · GitLab.org / cves · GitLab
Third Party Advisory
https://www.wireshark.org/security/wnpa-sec-2021-11.html

Wireshark · wnpa-sec-2021-11 · PNRP dissector large loop
Vendor Advisory
https://www.debian.org/security/2021/dsa-5019

Debian -- Security Information -- DSA-5019-1 wireshark
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2021-39923

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 11.0
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark
Versions from including (>=) 3.4.0 and up to, including, (<=) 3.4.9
cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark
Versions from including (>=) 3.2.0 and up to, including, (<=) 3.2.17
cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2021-39923

Exploit prediction scoring system (EPSS) score for CVE-2021-39923

CVSS scores for CVE-2021-39923

CWE ids for CVE-2021-39923

References for CVE-2021-39923

Products affected by CVE-2021-39923