<0.1% probability · 11.6th percentile — 2026-05-12
Affected versions
Wireshark 4.6.0 to 4.6.4
Summary
This vulnerability is a heap overflow flaw in the TLS protocol dissector component of Wireshark. Attackers can craft a malicious TLS packet that triggers the overflow when processed by a vulnerable Wireshark installation. Exploitation can result in denial of service and potentially remote code execution.
Remediation
Upgrade Wireshark to a version newer than 4.6.4 that includes a patch for this vulnerability. Avoid opening untrusted network capture files with vulnerable versions of Wireshark. Update Wireshark through official channels or your operating system's package manager.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.