Wireshark CVE-2026-5405
HIGHCVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionNVD
RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution
AnalysisAI
Heap-based buffer overflow in Wireshark's RDP protocol dissector allows local attackers to cause denial of service or execute arbitrary code via maliciously crafted capture files. Affects Wireshark versions 4.6.0-4.6.4 and 4.4.0-4.4.14. …
Sign in for full analysis, threat intelligence, and remediation guidance.
RemediationAI
Within 24 hours: Identify all Wireshark installations across network operations, security, and forensics teams using automated asset discovery; immediately restrict opening untrusted .pcap files to isolated sandbox environments only and communicate incident handling protocol to all analysts. Within 7 days: Downgrade affected versions (4.6.0-4.6.4, 4.4.0-4.4.14) to unaffected versions (Wireshark 4.6.5+, 4.4.15+, or 4.2.x LTS) and validate functionality in test environment before production rollout. …
Sign in for detailed remediation steps.
More from same product – last 7 days
Command injection in the shell-quote npm package allows attackers who can influence object-token inputs to inject arbitr
Heap buffer overflow in NGINX Plus and NGINX Open Source ngx_http_rewrite_module allows unauthenticated remote attackers
Vendor StatusVendor
Share
External POC / Exploit Code
Leaving vuln.today