Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-qunk-bbn6-j7ff
Vulnerability ID VCID-qunk-bbn6-j7ff
Aliases CVE-2008-3138
Summary Multiple Denial of Service vulnerabilities have been discovered in Wireshark.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
System Score Found at
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
epss 0.01004 https://api.first.org/data/v1/epss?cve=CVE-2008-3138
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2008-3138
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3138.json
https://api.first.org/data/v1/epss?cve=CVE-2008-3138
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3138
http://secunia.com/advisories/30886
http://secunia.com/advisories/30942
http://secunia.com/advisories/31085
http://secunia.com/advisories/31378
http://secunia.com/advisories/31687
http://secunia.com/advisories/32091
http://secunia.com/advisories/32944
http://security.gentoo.org/glsa/glsa-200808-04.xml
http://securitytracker.com/id?1020404
https://exchange.xforce.ibmcloud.com/vulnerabilities/43519
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10536
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14898
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00544.html
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0212
http://www.debian.org/security/2008/dsa-1673
http://www.redhat.com/support/errata/RHSA-2008-0890.html
http://www.securityfocus.com/archive/1/493882/100/0/threaded
http://www.securityfocus.com/bid/30020
http://www.vupen.com/english/advisories/2008/1982/references
http://www.vupen.com/english/advisories/2008/2773
http://www.wireshark.org/security/wnpa-sec-2008-03.html
454971 https://bugzilla.redhat.com/show_bug.cgi?id=454971
488834 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488834
cpe:2.3:a:rpath:rpath_linux:1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rpath:rpath_linux:1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.9.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
CVE-2008-3138 https://nvd.nist.gov/vuln/detail/CVE-2008-3138
GLSA-200808-04 https://security.gentoo.org/glsa/200808-04
RHSA-2008:0890 https://access.redhat.com/errata/RHSA-2008:0890
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2008-3138
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.76958
EPSS Score 0.01004
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:03:21.890914+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200808-04 38.0.0