CVE-2026-9759 NULL Pointer Dereference in Wireshark

ROHC protocol dissector crash in Wireshark 4.6.0 to 4.6.5 and 4.4.0 to 4.4.15 allows denial of service...

wireshark: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Wireshark

A flaw was found in Wireshark. A path traversal can occur when a malformed configuration profile is imported, resulting in a denial of service or potentially in code execution...

Wireshark Analyzer 4.6.6

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. Thi...

OESA-2026-2225 wireshark security update

Wireshark is an open source tool for profiling network traffic and analyzing packets. Such a tool is often referred to as a network analyzer, network protocol analyzer or sniffer. Security Fixes: ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of...

CVE-2026-6525

A flaw was found in the IEEE 802.11 dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing a NULL pointer dereference, resulting in a denial of service. Mitigation If the IEEE 802.11 protocol dissector is not being used, it can be...

CVE-2026-6538

A flaw was found in Wireshark. A remote attacker could exploit a crash in the BEEP Blocks Extensible Exchange Protocol dissector by crafting a malicious BEEP packet. This vulnerability leads to a Denial of Service DoS, causing Wireshark to become unresponsive. Mitigation To mitigate this issue,...

CVE-2026-6536

A flaw was found in Wireshark. A remote attacker could exploit this vulnerability by sending a specially crafted DLMS/COSEM protocol packet. This could lead to an infinite loop in the DLMS/COSEM protocol dissector, resulting in a Denial of Service DoS for the affected system. Mitigation To mitiga...

CVE-2026-6537

A flaw was found in Wireshark. A remote attacker could exploit a vulnerability in the ZigBee protocol dissector by crafting a malicious packet. This could lead to a crash of the Wireshark application, resulting in a denial of service DoS for the user. Mitigation To mitigate this issue, users can...

CVE-2026-6531

A flaw was found in Wireshark. The SANE Scanner Access Now Easy protocol dissector contains an infinite loop vulnerability. A local user processing specially crafted SANE protocol traffic, such as opening a malicious capture file, can trigger this flaw, leading to a denial of service DoS in...

CVE-2026-6522

A flaw was found in Wireshark. The RPKI-Router protocol dissector contains an infinite loop. A remote attacker could exploit this by crafting a malicious RPKI-Router packet, leading to a denial of service DoS condition, making the Wireshark application unresponsive. Mitigation To reduce exposure,...

CVE-2026-5655

A flaw was found in Wireshark. A local user could be tricked into opening a specially crafted capture file containing Session Description Protocol SDP data. Processing this malicious data could lead to a crash in the SDP protocol dissector, resulting in a denial of service for the application...

CVE-2026-6521

A flaw was found in Wireshark. The OpenFlow v5 protocol dissector contains an infinite loop vulnerability. A remote attacker could exploit this by sending a specially crafted packet, leading to a denial of service DoS condition, making the application unresponsive. Mitigation To reduce exposure,...

CVE-2026-5407

A flaw was found in Wireshark, a network protocol analyzer. An attacker could exploit this vulnerability by providing a specially crafted network capture file containing malicious SMB2 protocol data. This could trigger an infinite loop in Wireshark's SMB2 analysis component, leading to a denial o...

CVE-2026-6870

A flaw was found in Wireshark. A user processing a specially crafted GSM RP protocol dissector file or network traffic could trigger a crash, leading to a denial of service. Mitigation To mitigate this issue, avoid opening untrusted network capture files or analyzing network traffic from untruste...

CVE-2026-6530

A flaw was found in Wireshark. A remote attacker could exploit a crash in the DCP-ETSI protocol dissector by crafting a malicious network packet. This vulnerability allows for a denial of service DoS, making the Wireshark application unavailable. Mitigation To mitigate this issue, users should...

CVE-2026-6524

A flaw was found in Wireshark, a widely used network protocol analyzer. A remote attacker could exploit a vulnerability within the MySQL protocol dissector, the part of the software that interprets MySQL network communications. This could lead to a denial of service, causing the Wireshark...

CVE-2026-5401

A flaw was found in Wireshark. An attacker could craft a malicious network trace file that, when opened by a user, would trigger a crash in the AFP Spotlight protocol dissector. This vulnerability leads to a denial of service, making the application unavailable. Mitigation To mitigate this issue,...

Astra Linux - уязвимость в wireshark

The SDP protocol dissector in Wireshark versions 4.6.0 to 4.6.4 allows for a denial of service attack...

Astra Linux - уязвимость в wireshark

RTSP protocol dissector crashes in Wireshark versions 4.6.0 to 4.6.4...

Astra Linux - уязвимость в wireshark

The column handling in Wireshark versions 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows for denial of service through packet injection or malicious capture files...