CVE-2026-15166

MEDIUM

Stack-based Buffer Overflow in Wireshark

Title source: cna
STIX 2.1

Description

IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service

Scores

CVSS v3 5.5
EPSS 0.0013
EPSS Percentile 3.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-121
Status published
Products (3)
wireshark/wireshark 4.4.0 - 4.4.17
Wireshark Foundation/Wireshark 4.4.0 - 4.4.17
Wireshark Foundation/Wireshark 4.6.0 - 4.6.7
Published Jul 08, 2026
Tracked Since Jul 09, 2026