PT-2026-36070 · Wireshark · Wireshark

Sharon Brizinov

Published

2026-03-30

Updated

2026-06-01

CVE-2026-6533

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.4 Wireshark versions 4.4.0 through 4.4.14

Description A crash in the dissection engine during LZ77 decompression can lead to a denial of service. LZ77 is a lossless data compression algorithm that replaces repeated occurrences of data with references to a single copy.

Recommendations Update Wireshark versions 4.6.0 through 4.6.4 to a version newer than 4.6.4. Update Wireshark versions 4.4.0 through 4.4.14 to a version newer than 4.4.14.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1325

Related Identifiers

BDU:2026-06968

CVE-2026-6533

OESA-2026-2225

OESA-2026-2226

OESA-2026-2227

OESA-2026-2228

OPENSUSE-SU-2026:10686-1

Affected Products

Wireshark

PT-2026-36070 · Wireshark · Wireshark

CVE-2026-6533

Weakness Enumeration

Related Identifiers

Affected Products

References · 104