Denial of Service Vulnerability in Wireshark Software by The Wireshark Foundation
CVE-2026-15167

7.5HIGH

Key Information:

Vendor

Wireshark

Status
Vendor
CVE Published:
8 July 2026

What is CVE-2026-15167?

A vulnerability has been identified in the Wireshark file parser for the DBS Etherwatch format, resulting in a potential denial of service. This issue affects multiple versions of Wireshark, specifically versions 4.6.0 through 4.6.6 and versions 4.4.0 through 4.4.16. An attacker could exploit this flaw by sending crafted DBS Etherwatch files to the application, leading to crashes of the software, which may interrupt network analysis and monitoring activities.

Affected Version(s)

Wireshark 4.6.0 < 4.6.7

Wireshark 4.4.0 < 4.4.17

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Nguyen Huu Trung
.