CVE-2026-3201

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.4.0 through 4.4.13 Wireshark versions 4.6.0 through 4.6.3

Description The USB HID protocol dissector in Wireshark is susceptible to memory exhaustion, potentially leading to a denial of service. The issue occurs when processing specially crafted USB HID packets.

Recommendations Wireshark versions 4.4.0 through 4.4.13 should be updated to a later version. Wireshark versions 4.6.0 through 4.6.3 should be updated to a later version.

Exploit

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1325CWE-770

Related Identifiers

ALSA-2026:9666

AZL-78336

CVE-2026-3201

OESA-2026-1545

OESA-2026-1547

OESA-2026-1548

OESA-2026-1549

OESA-2026-1550

OPENSUSE-SU-2026:10274-1

OPENSUSE-SU-2026:20685-1

RHSA-2026:9666

SUSE-SU-2026:0810-1

SUSE-SU-2026:1169-1

SUSE-SU-2026:21559-1

Affected Products

Wireshark

CVE-2026-3201

Weakness Enumeration

Related Identifiers

Affected Products

References · 80