Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-jqvh-ejgx-4uf9
Vulnerability ID VCID-jqvh-ejgx-4uf9
Aliases CVE-2008-3934
Summary Multiple Denial of Service vulnerabilities have been discovered in Wireshark.
Status Published
Exploitability 0.5
Weighted Severity 3.0
Risk 1.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-20 Improper Input Validation
System Score Found at
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
epss 0.0017 https://api.first.org/data/v1/epss?cve=CVE-2008-3934
cvssv2 3.3 https://nvd.nist.gov/vuln/detail/CVE-2008-3934
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3934.json
https://api.first.org/data/v1/epss?cve=CVE-2008-3934
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3934
http://secunia.com/advisories/31864
http://secunia.com/advisories/31886
http://secunia.com/advisories/32028
http://secunia.com/advisories/32091
http://security.gentoo.org/glsa/glsa-200809-17.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15087
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9920
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00713.html
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00715.html
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0278
http://www.mandriva.com/security/advisories?name=MDVSA-2008:199
http://www.redhat.com/support/errata/RHSA-2008-0890.html
http://www.securityfocus.com/archive/1/496487/100/0/threaded
http://www.securitytracker.com/id?1020819
http://www.vupen.com/english/advisories/2008/2493
http://www.vupen.com/english/advisories/2008/2773
http://www.wireshark.org/security/wnpa-sec-2008-05.html
461245 https://bugzilla.redhat.com/show_bug.cgi?id=461245
497878 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=497878
cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.6a:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.6a:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*
CVE-2008-3934 https://nvd.nist.gov/vuln/detail/CVE-2008-3934
GLSA-200809-17 https://security.gentoo.org/glsa/200809-17
RHSA-2008:0890 https://access.redhat.com/errata/RHSA-2008:0890
No exploits are available.
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2008-3934
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.38147
EPSS Score 0.0017
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:00:49.892496+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200809-17 38.0.0