What is the CVSS score of CVE-2026-6524?

CVE-2026-6524 has a CVSS 3.1 base score of 5.5 (Medium). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Is there a patch available for CVE-2026-6524?

Yes, a patch is available for CVE-2026-6524. Update the affected software to the latest version immediately.

Wireshark CVE-2026-6524

EUVD-2026-26332 MEDIUM

Access of Uninitialized Pointer (CWE-824)

2026-04-30 GitLab

Denial Of Service Memory Corruption Red Hat Suse

5.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Patch released

May 01, 2026 - 19:27 nvd

Patch available

Apr 30, 2026 - 08:16 EUVD

Analysis Generated

Apr 30, 2026 - 06:46 vuln.today

EUVD ID Assigned

Apr 30, 2026 - 06:30 euvd

EUVD-2026-26332

Analysis Generated

Apr 30, 2026 - 06:30 vuln.today

CVE Published

Apr 30, 2026 - 05:34 nvd

MEDIUM 5.5

DescriptionNVD

MySQL protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

AnalysisAI

Denial of service via MySQL protocol dissector crash in Wireshark 4.6.0-4.6.4 and 4.4.0-4.4.14 allows local users with no privileges to crash the application through a crafted malicious pcap file or network capture, requiring only user interaction to open the file. The vulnerability stems from improper memory access in the MySQL dissector parser (CWE-824: Access of Uninitialized Pointer), resulting in application termination and loss of packet analysis capability. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory