Wireshark
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Wireshark.
By the Year
In 2026 there have been 4 vulnerabilities in Wireshark with an average score of 5.1 out of ten. Last year, in 2025 Wireshark had 7 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Wireshark in 2026 could surpass last years number. Last year, the average CVE base score was greater by 1.44
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 4 | 5.05 |
| 2025 | 7 | 6.49 |
| 2024 | 19 | 7.09 |
| 2023 | 31 | 6.01 |
| 2022 | 8 | 6.35 |
| 2021 | 22 | 7.37 |
| 2020 | 20 | 6.58 |
| 2019 | 22 | 6.88 |
| 2018 | 79 | 7.27 |
It may take a day or so for new Wireshark vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Wireshark Security Vulnerabilities
Wireshark RF4CE Profile Dissector DoS in 4.4.0-4.4.13 & 4.6.0-4.6.3
CVE-2026-3203
5.5 - Medium
- February 25, 2026
RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
Buffer Over-read
NTS-KE Dissector Crash in Wireshark 4.6.0-4.6.3 (DoS)
CVE-2026-3202
4.7 - Medium
- February 25, 2026
NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service
NULL Pointer Dereference
Wireshark 4.4-4.6 USB HID protocol dissector DOS (memory exhaustion)
CVE-2026-3201
4.7 - Medium
- February 25, 2026
USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
Stack Exhaustion
Wireshark 4.6.0-4.6.2/4.4.0-4.4.12: SOME/IPSD dissector DoS Crash
CVE-2026-0962
5.3 - Medium
- January 14, 2026
SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
Memory Corruption
Wireshark MEGACO Dissector DoS via Infinite Loop (4.4.0-4.4.11,4.6.0-4.6.1)
CVE-2025-13946
5.5 - Medium
- December 03, 2025
MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service
Infinite Loop
Wireshark HTTP3 dissector DoS (4.6.0-4.6.1)
CVE-2025-13945
5.5 - Medium
- December 03, 2025
HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service
Stack Exhaustion
Wireshark 4.6.0 BPv7 dissector DoS crash
CVE-2025-13674
5.5 - Medium
- November 26, 2025
BPv7 dissector crash in Wireshark 4.6.0 allows denial of service
Access of Uninitialized Pointer
Wireshark 4.4-4.6 DoS via Kafka Dissector Crash
CVE-2025-13499
7.8 - High
- November 21, 2025
Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service
Access of Uninitialized Pointer
Wireshark MONGO dissector DoS via infinite loop 4.2.04.2.13, 4.4.04.4.9
CVE-2025-11626
5.5 - Medium
- October 10, 2025
MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service
Infinite Loop
Wireshark 4.4.0-4.4.6 Column Crash – Denial of Service via Packet Injection
CVE-2025-5601
7.8 - High
- June 04, 2025
Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file
Classic Buffer Overflow
Wireshark 4.2-4.4.3 Bundle & CBOR Dissectors DoS (Crashes)
CVE-2025-1492
7.8 - High
- February 20, 2025
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file
Stack Exhaustion
Wireshark FiveCo RAP Dissector Infinite Loop Denial of Service Vulnerability
CVE-2024-11595
7.8 - High
- November 21, 2024
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
Infinite Loop
Wireshark ECMP Dissector Denial of Service Vulnerability
CVE-2024-11596
7.8 - High
- November 21, 2024
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
Buffer Over-read
Wireshark 4.4.0 & 4.2.04.2.7 Appletalk/RELOAD DSCRASH via Packets (DoS)
CVE-2024-9781
7.8 - High
- October 10, 2024
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file
Improper Handling of Missing Values
Wireshark 4.4.0 ITS Dissector DoS via Packet Injection/Crafted Capture
CVE-2024-9780
7.8 - High
- October 10, 2024
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file
Missing Initialization of a Variable
Denial of Service via SPRT Dissector Crash in Wireshark 4.0.04.2.0
CVE-2024-8645
5.5 - Medium
- September 10, 2024
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file
Access of Uninitialized Pointer
Wireshark NTLMSSP dissector DoS via packet injection (4.04.2)
CVE-2024-8250
7.8 - High
- August 29, 2024
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file
Dangling pointer
Use After Free in editcap Causing DoS via Crafted Capture File
CVE-2024-4855
3.6 - Low
- May 14, 2024
Use after free issue in editcap could cause denial of service via crafted capture file
Dangling pointer
editcap Memory Handling Bug Causing DoS
CVE-2024-4853
3.6 - Low
- May 14, 2024
Memory handling issue in editcap could cause denial of service via crafted capture file
Mismatched Memory Management Routines
Wireshark TLV Dissector Infinite Loop DoS v3.64.2 (ZigBee & MONGO)
CVE-2024-4854
6.4 - Medium
- May 14, 2024
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file
Infinite Loop
Wireshark 4.x DoS via T.38 Dissector Crash (CVE-2024-2955)
CVE-2024-2955
7.8 - High
- March 26, 2024
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file
Mismatched Memory Management Routines
Wireshark DoS via NetScreen file 3.6.0-3.6.18 & 4.0.0-4.0.10
CVE-2023-6175
7.8 - High
- March 26, 2024
NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file
Classic Buffer Overflow
Wireshark <=4.1.0 Buffer Overflow in pan/addr_resolv.c Leading to DoS
CVE-2024-24476
7.5 - High
- February 21, 2024
A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and ws_manuf_lookup_str(), size components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
Buffer Overflow
Wireshark <4.2.0 Buffer Overflow in wsutil/to_str.c & format_fractional_part_nsecs
CVE-2024-24479
7.5 - High
- February 21, 2024
A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
Classic Buffer Overflow
Wireshark <4.2.0 DoS via packet-bgp.c optlen
CVE-2024-24478
- February 21, 2024
An issue in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the packet-bgp.c, dissect_bgp_open(tvbuff_t*tvb, proto_tree*tree, packet_info*pinfo), optlen components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
Wireshark 4.0-4.2.0 IEEE1609.2 Dissector Crash (DoS) via Crafted Capture
CVE-2024-0209
7.8 - High
- January 03, 2024
IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file
NULL Pointer Dereference
Wireshark 4.2.0 Zigbee TLV Dissector Crash (CVE-2024-0210)
CVE-2024-0210
7.8 - High
- January 03, 2024
Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
Stack Exhaustion
Wireshark 4.2.0 DOCSIS dissector CVE-2024-0211: DoS via packet injection
CVE-2024-0211
7.8 - High
- January 03, 2024
DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
Infinite Loop
Wireshark 4.2.0 HTTP3 Dissect Crash (CVE-2024-0207) DoS via Packet Injection
CVE-2024-0207
7.8 - High
- January 03, 2024
HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file
Out-of-bounds Read
Wireshark GVCP DSO via crafted capture (4.0.0-4.0.11, 3.6.0-3.6.19, 4.2.0)
CVE-2024-0208
7.8 - High
- January 03, 2024
GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file
Improper Handling of Missing Values
Wireshark 4.0.x SSH Dissector DoS via Crafted Packets
CVE-2023-6174
6.3 - Medium
- November 16, 2023
SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted capture file
Out-of-bounds Read
Wireshark RTPS dissector DoS via memory leak (v3.6.0-3.6.16, 4.0.0-4.0.8)
CVE-2023-5371
5.3 - Medium
- October 04, 2023
RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file
Stack Exhaustion
Wireshark 2.0.0-4.0.7 Divide-By-Zero via CP2179 Packet Length Validation
CVE-2023-2906
- August 25, 2023
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack.
Divide By Zero
Wireshark BT SDP dissector infinite loop DoS v3.6.0-3.6.15 & 4.0.0-4.0.7
CVE-2023-4511
5.3 - Medium
- August 24, 2023
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
Infinite Loop
Wireshark 4.0.0-4.0.6 CBOR DoS via crafted capture
CVE-2023-4512
5.3 - Medium
- August 24, 2023
CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
Stack Exhaustion
Wireshark 3.6.0-3.6.15 / 4.0.0-4.0.7 SDP Dissector Mem Leak DoS
CVE-2023-4513
5.3 - Medium
- August 24, 2023
BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
Memory Leak
Wireshark 3.6-4.0.6 Kafka Dissector Crash (DOS)
CVE-2023-3648
5.3 - Medium
- July 14, 2023
Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file
Mismatched Memory Management Routines
Wireshark iSCSI Dissector Crash (4.0.0-4.0.6) DoS via Packet Injection
CVE-2023-3649
5.3 - Medium
- July 14, 2023
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
Buffer Over-read
Wireshark <=4.0.5 Heap Overflow in RTPS Packet Parsing
CVE-2023-0666
6.5 - Medium
- June 07, 2023
Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.
Heap-based Buffer Overflow
Wireshark <=4.0.5 Packet parsing heap buffer overflow
CVE-2023-0667
6.5 - Medium
- June 07, 2023
Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark
Heap-based Buffer Overflow
Wireshark 4.0.5 Buffer Overflow in IEEE-C37.118 Parser
CVE-2023-0668
6.5 - Medium
- June 07, 2023
Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.
Out-of-bounds Read
Wireshark 3.6.x-4.0.5 XRA dissector infinite loop DoS
CVE-2023-2952
5.3 - Medium
- May 30, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file
Infinite Loop
Wireshark DOS via NetScaler file parser (v3.6.0-3.6.13, 4.0.0-4.0.5)
CVE-2023-2858
5.3 - Medium
- May 26, 2023
NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
Memory Corruption
Wireshark 3.6-4.0 GDSDB infinite-loop DoS via packet injection (CVE-2023-2879)
CVE-2023-2879
6.3 - Medium
- May 26, 2023
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file
Infinite Loop
Wireshark BLF Parser DoS via Crafted Capture (v4.0.04.0.5, 3.6.03.6.13)
CVE-2023-2857
6.5 - Medium
- May 26, 2023
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
Memory Corruption
Wireshark 3.6.0-3.6.13/4.0.0-4.0.5 Candump log parser DoS via crafted capture
CVE-2023-2855
5.3 - Medium
- May 26, 2023
Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
Memory Corruption
Wireshark 3.6.03.6.13 VMS TCPIPtrace Parser Crash (CVE-2023-2856)
CVE-2023-2856
5.3 - Medium
- May 26, 2023
VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
Memory Corruption
Wireshark 3.6.x-4.0.x Denial of Service via BLF Parser Crash
CVE-2023-2854
6.5 - Medium
- May 26, 2023
BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file
Memory Corruption
DoS via GQUIC Dissector Crash in Wireshark 3.6.0-3.6.12 & 4.0.0-4.0.4
CVE-2023-1994
6.3 - Medium
- April 12, 2023
GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
NULL Pointer Dereference
Wireshark LISP Dissector DoS 3.6.0-3.6.12 & 4.0.0-4.0.4
CVE-2023-1993
6.3 - Medium
- April 12, 2023
LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
Excessive Iteration
