Multiple vulnerabilities in Wireshark

Popis

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

1. Heap overflow vulnerability in TLS protocol dissector can be exploited to cause denial of service or execute arbitrary code.
2. A denial of service vulnerability in SDP protocol dissector can be exploited to cause a denial of service.
3. Infinite loop vulnerability in DLMS/COSEM protocol dissector can be exploited to cause a denial of service.
4. Infinite loop vulnerability in TLS protocol dissector can be exploited to cause a denial of service.
5. A denial of service vulnerability in RTSP protocol dissector can be exploited to cause a denial of service.
6. A denial of service vulnerability in IEEE 802.11 protocol dissector can be exploited to cause a denial of service.

Oficiální doporučení

• wnpa-sec-2026-14 · TLS dissector crash and possible code execution

• wnpa-sec-2026-19 · SDP dissector crash
• wnpa-sec-2026-25 · DLMS/COSEM dissector infinite loop
• wnpa-sec-2026-33 · TLS protocol dissector infinite loop
• wnpa-sec-2026-35 · RTSP protocol dissector crash
• wnpa-sec-2026-36 · IEEE 802.11 protocol dissector crash

Vykořisťování

Public exploits exist for this vulnerability.

Související produkty

• Wireshark

seznam CVE

• CVE-2026-5402
  critical
• CVE-2026-5655
  critical
• CVE-2026-6526
  high
• CVE-2026-6528
  high
• CVE-2026-6536
  high
• CVE-2026-6525
  high

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com