Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-kx87-csvc-63dd
Vulnerability ID VCID-kx87-csvc-63dd
Aliases CVE-2008-3137
Summary Multiple Denial of Service vulnerabilities have been discovered in Wireshark.
Status Published
Exploitability 0.5
Weighted Severity 3.9
Risk 1.9
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-20 Improper Input Validation
System Score Found at
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
epss 0.02919 https://api.first.org/data/v1/epss?cve=CVE-2008-3137
cvssv2 4.3 https://nvd.nist.gov/vuln/detail/CVE-2008-3137
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3137.json
https://api.first.org/data/v1/epss?cve=CVE-2008-3137
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3137
http://secunia.com/advisories/30886
http://secunia.com/advisories/30942
http://secunia.com/advisories/31085
http://secunia.com/advisories/31378
http://secunia.com/advisories/31687
http://secunia.com/advisories/32091
http://secunia.com/advisories/32944
http://security.gentoo.org/glsa/glsa-200808-04.xml
http://securitytracker.com/id?1020404
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10860
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15068
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00544.html
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0212
http://www.debian.org/security/2008/dsa-1673
http://www.redhat.com/support/errata/RHSA-2008-0890.html
http://www.securityfocus.com/archive/1/493882/100/0/threaded
http://www.securityfocus.com/bid/30020
http://www.vupen.com/english/advisories/2008/1982/references
http://www.vupen.com/english/advisories/2008/2773
http://www.wireshark.org/security/wnpa-sec-2008-03.html
454970 https://bugzilla.redhat.com/show_bug.cgi?id=454970
488834 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488834
cpe:2.3:a:wireshark:wireshark:0.9.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
CVE-2008-3137 https://nvd.nist.gov/vuln/detail/CVE-2008-3137
GLSA-200808-04 https://security.gentoo.org/glsa/200808-04
RHSA-2008:0890 https://access.redhat.com/errata/RHSA-2008:0890
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2008-3137
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.86325
EPSS Score 0.02919
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:03:21.880841+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200808-04 38.0.0