Important: Red Hat Security Advisory: wireshark security update

An update for wireshark is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

RHEL 10 : wireshark (RHSA-2026:26182)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:26182 advisory. The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security...

Security update for wireshark (important)

openSUSE security update: security update for wireshark ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20685-1 Rating: important References: bsc1258907 bsc1258909 bsc1263726 bsc1263728 bsc1263729 bsc1263731 bsc1263732 bsc1263733 bsc1263734 bsc12637...

AlmaLinux 10 : wireshark (ALSA-2026:9666)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:9666 advisory. wireshark: Buffer Over-read in Wireshark CVE-2026-3203 wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark CVE-2026-3201 Tenable h...

wireshark security update

4.4.2-4.0.1.el101.4 - Fix post script to not fail during initial installation Orabug: 37565359 1:4.4.2-4.4 - Resolves: RHEL-152921 - CVE-2026-3203 Buffer Over-read 1:4.4.2-4.3 - Resolves: RHEL-152912 - CVE-2026-3201 Improperly Controlled Sequential Memory Allocation 1:4.4.2-4.2 - Resolves:...

TencentOS Server 4: wireshark (TSSA-2026:0183)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0183 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Fedora: Security Advisory (FEDORA-2026-a92f2096cd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15: libwireshark17 / libwiretap14 / libwsutil15 / wireshark / etc (SUSE-SU-2026:0810-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0810-1 advisory. This update for wireshark fixes the following issue: - CVE-2026-3201: USB HID protocol dissector memory exhaustion bsc1258907. Tenable has extracted the...

Wireshark 4.4.x < 4.4.14 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 4.4.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.4.14 advisory. - RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of servic...

Wireshark 4.4.x < 4.4.14 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.4.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.4.14 advisory. - RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial ...

Linux Distros Unpatched Vulnerability : CVE-2026-3201

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service CVE-2026-3201 Note that Nessus relies on t...

libwireshark19-4.6.4-1.1 on GA media (moderate)

libwireshark19-4.6.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10274-1 Rating: moderate Cross-References: CVE-2026-3201 CVE-2026-3202 CVE-2026-3203 CVSS scores: CVE-2026-3201 SUSE : 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2026-3201 SUSE : 4.8...

CVE-2026-3201

creationtimestamp| type| source ---|---|--- 2026-02-26 06:59:23+00:00| seen| https://t.me/linuxtnt/4858 2026-02-26 14:40:21+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mfrggtdviy2k 2026-03-02 10:00:25+00:00| seen|...

DEBIAN-CVE-2026-3201

USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service...

CVE-2026-3201

USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service...

KLA90904 DoS vulnerability in Wireshark

Denial of service vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to cause denial of service. Original advisories wnpa-sec-2026-05 · USB HID dissector memory exhaustion Exploitation Related products Wireshark CVE list CVE-2026-3201 warning Solution Update to t...

CVE-2024-3201

The WP DSGVO Tools GDPR plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pplink' shortcode in all versions up to, and including, 3.1.32 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

CVE-2025-3201

The Contact Form builder with drag & drop for WordPress WordPress plugin before 2.4.3 does not sanitise and escape some of its settings, which could allow high privilege users such as contributors to perform Stored Cross-Site Scripting attacks...

CVE-2025-3201

The Contact Form builder with drag & drop for WordPress WordPress plugin before 2.4.3 does not sanitise and escape some of its settings, which could allow high privilege users such as contributors to perform Stored Cross-Site Scripting attacks...

CVE-2025-3201 Kali Forms < 2.4.3 - Contributor+ Stored XSS

The Contact Form builder with drag & drop for WordPress WordPress plugin before 2.4.3 does not sanitise and escape some of its settings, which could allow high privilege users such as contributors to perform Stored Cross-Site Scripting attacks...