PT-2026-36050 · Wireshark · Wireshark

Brendan Coles

Published

2026-03-09

Updated

2026-06-01

CVE-2026-5407

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.4 Wireshark versions 4.4.0 through 4.4.14

Description An infinite loop in the SMB2 protocol dissector can lead to a denial of service.

Recommendations Update Wireshark versions 4.6.0 through 4.6.4 to a version newer than 4.6.4. Update Wireshark versions 4.4.0 through 4.4.14 to a version newer than 4.4.14.

Exploit

Fix

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

BDU:2026-06399

CVE-2026-5407

OESA-2026-2225

OESA-2026-2226

OESA-2026-2227

OESA-2026-2228

OPENSUSE-SU-2026:10686-1

Affected Products

Wireshark

PT-2026-36050 · Wireshark · Wireshark

CVE-2026-5407

Weakness Enumeration

Related Identifiers

Affected Products

References · 102