What is the CVSS score of CVE-2026-6537?

CVE-2026-6537 has a CVSS 3.1 base score of 5.5 (Medium). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Is there a patch available for CVE-2026-6537?

Yes, a patch is available for CVE-2026-6537. Update the affected software to the latest version immediately.

Wireshark CVE-2026-6537

EUVD-2026-26344 MEDIUM

Stack-based Buffer Overflow (CWE-121)

2026-04-30 GitLab

Buffer Overflow Denial Of Service Stack Overflow Red Hat Suse

5.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Patch released

May 01, 2026 - 18:15 nvd

Patch available

Apr 30, 2026 - 08:16 EUVD

Analysis Generated

Apr 30, 2026 - 06:47 vuln.today

EUVD ID Assigned

Apr 30, 2026 - 06:30 euvd

EUVD-2026-26344

Analysis Generated

Apr 30, 2026 - 06:30 vuln.today

CVE Published

Apr 30, 2026 - 05:37 nvd

MEDIUM 5.5

DescriptionNVD

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

AnalysisAI

Stack buffer overflow in Wireshark's ZigBee protocol dissector (versions 4.6.0-4.6.4 and 4.4.0-4.4.14) causes application crash and denial of service when processing malformed ZigBee packets. An attacker must trick a user into opening a crafted packet capture file or visiting a malicious webpage serving the packet, since the vulnerability requires local file access and user interaction. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory