CVE-2026-5299EXPLOITEDPATCHED

wireshark · wireshark

Uncontrolled Recursion in Wireshark

Description

ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

Affected Products

Vendor	Product	Versions
wireshark	wireshark	4.6.0, 4.4.0, 4.4.14, 4.6.4

References

https://www.wireshark.org/security/wnpa-sec-2026-12.html
https://gitlab.com/wireshark/wireshark/-/issues/21077(issue-tracking, permissions-required)

Related News (2 articles)

Tier C

VulDB4d ago

CVE-2026-5299 | Wireshark up to 4.4.14/4.6.4 ICMPv6 PvD Protocol Dissector recursion (ID 21077)

→ No new info (linked only)

Tier B

CERT-FR4d ago

Multiples vulnérabilités dans Wireshark (30 avril 2026)

→ No new info (linked only)

CVSS 3.17.5 HIGH

VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

4.6.54.4.15

CWECWE-674, CWE-20, CWE-119

PublishedApr 30, 2026

Last enriched3d agov3

Trending Score35

Source articles2

Independent2

Info Completeness10/14

Missing: epss, kev, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-5656EXP

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Wireshark

Trending: 62

HIGHCVE-2026-5405EXP

Heap-based Buffer Overflow in Wireshark

Trending: 62

HIGHCVE-2026-5403EXP

Heap-based Buffer Overflow in Wireshark

Trending: 62

HIGHCVE-2026-5402

Heap-based Buffer Overflow in Wireshark

Trending: 47

MEDIUMCVE-2026-6537EXP

Stack-based Buffer Overflow in Wireshark

Trending: 33

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 30, 2026

Discovered by ZDM

Apr 30, 2026

Updated: description, activelyExploited

Apr 30, 2026

Actively Exploited

Apr 30, 2026

Exploit Available

Apr 30, 2026

Patch Available

Apr 30, 2026

Updated: affectedVersions, severity, cvssEstimate, cweIds, exploitAvailable

Apr 30, 2026

Version History

Last enriched 3d ago

v3Tier B3d ago

Updated affected versions to include 4.4.14 and 4.6.4, changed severity to HIGH, updated CVSS estimate to 7.5, added new CWE IDs, and marked exploit availability as true.

affectedVersionsseveritycvssEstimatecweIdsexploitAvailable

via CERT-FR

v2Tier C4d ago

Updated description with more technical detail, marked as actively exploited, and noted that no exploit is available.

descriptionactivelyExploited

via VulDB

v14d ago

Initial creation