{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-6535", "assignerOrgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "state": "PUBLISHED", "assignerShortName": "GitLab", "dateReserved": "2026-04-17T15:06:27.695Z", "datePublished": "2026-04-30T05:36:49.218Z", "dateUpdated": "2026-04-30T12:31:36.338Z"}, "containers": {"cna": {"title": "Improperly Controlled Sequential Memory Allocation in Wireshark", "descriptions": [{"lang": "en", "value": "Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service"}], "affected": [{"vendor": "Wireshark Foundation", "product": "Wireshark", "versions": [{"version": "4.6.0", "status": "affected", "lessThan": "4.6.5", "versionType": "semver"}, {"version": "4.4.0", "status": "affected", "lessThan": "4.4.15", "versionType": "semver"}], "defaultStatus": "unaffected"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-1325: Improperly Controlled Sequential Memory Allocation", "cweId": "CWE-1325", "type": "CWE"}]}], "references": [{"url": "https://www.wireshark.org/security/wnpa-sec-2026-26.html"}, {"url": "https://gitlab.com/wireshark/wireshark/-/issues/21097", "name": "GitLab Issue #21097", "tags": ["issue-tracking", "permissions-required"]}, {"url": "https://gitlab.com/wireshark/wireshark/-/issues/21098", "name": "GitLab Issue #21098", "tags": ["issue-tracking", "permissions-required"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM"}}], "solutions": [{"lang": "en", "value": "Upgrade to version 4.6.5 or above"}], "credits": [{"lang": "en", "value": "Brendan Coles", "type": "finder"}], "providerMetadata": {"orgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "shortName": "GitLab", "dateUpdated": "2026-04-30T05:36:49.218Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-30T12:31:30.169396Z", "id": "CVE-2026-6535", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-30T12:31:36.338Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-6535", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-30T12:31:30.169396Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-30T12:31:33.629Z"}}], "cna": {"title": "Improperly Controlled Sequential Memory Allocation in Wireshark", "credits": [{"lang": "en", "type": "finder", "value": "Brendan Coles"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Wireshark Foundation", "product": "Wireshark", "versions": [{"status": "affected", "version": "4.6.0", "lessThan": "4.6.5", "versionType": "semver"}, {"status": "affected", "version": "4.4.0", "lessThan": "4.4.15", "versionType": "semver"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Upgrade to version 4.6.5 or above"}], "references": [{"url": "https://www.wireshark.org/security/wnpa-sec-2026-26.html"}, {"url": "https://gitlab.com/wireshark/wireshark/-/issues/21097", "name": "GitLab Issue #21097", "tags": ["issue-tracking", "permissions-required"]}, {"url": "https://gitlab.com/wireshark/wireshark/-/issues/21098", "name": "GitLab Issue #21098", "tags": ["issue-tracking", "permissions-required"]}], "descriptions": [{"lang": "en", "value": "Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1325", "description": "CWE-1325: Improperly Controlled Sequential Memory Allocation"}]}], "providerMetadata": {"orgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "shortName": "GitLab", "dateUpdated": "2026-04-30T05:36:49.218Z"}}}, "cveMetadata": {"cveId": "CVE-2026-6535", "state": "PUBLISHED", "dateUpdated": "2026-04-30T12:31:36.338Z", "dateReserved": "2026-04-17T15:06:27.695Z", "assignerOrgId": "ceab7361-8a18-47b1-92ba-4d7d25f6715a", "datePublished": "2026-04-30T05:36:49.218Z", "assignerShortName": "GitLab"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*", "matchCriteriaId": "77CF79F1-B53C-40A7-9570-A192D5A85ED6", "versionEndIncluding": "4.4.14", "versionStartIncluding": "4.4.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*", "matchCriteriaId": "B52139AE-161F-406A-B28D-F874CE8B68B6", "versionEndIncluding": "4.6.4", "versionStartIncluding": "4.6.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service"}], "id": "CVE-2026-6535", "lastModified": "2026-05-01T18:16:11.087", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "[email protected]", "type": "Secondary"}]}, "published": "2026-04-30T07:16:40.870", "references": [{"source": "[email protected]", "tags": ["Exploit", "Issue Tracking"], "url": "https://gitlab.com/wireshark/wireshark/-/issues/21097"}, {"source": "[email protected]", "tags": ["Broken Link"], "url": "https://gitlab.com/wireshark/wireshark/-/issues/21098"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://www.wireshark.org/security/wnpa-sec-2026-26.html"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1325"}], "source": "[email protected]", "type": "Primary"}]}

{"bugzilla": {"description": "wireshark: Wireshark: Denial of service via zlib decompression crash", "id": "2464035", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464035"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-409", "details": ["A flaw was found in Wireshark's dissection engine. A remote attacker could exploit this vulnerability by sending a specially crafted packet. This could trigger a zlib decompression crash, leading to a denial of service and making the application unresponsive or causing it to terminate unexpectedly."], "mitigation": {"lang": "en:us", "value": "To mitigate this issue, users should avoid opening untrusted capture files or capturing network traffic from untrusted sources with Wireshark. If live capture of potentially malicious traffic is required, consider performing it within a sandboxed environment to contain any potential denial of service."}, "name": "CVE-2026-6535", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-04-30T05:36:49Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-6535\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-6535\nhttps://gitlab.com/wireshark/wireshark/-/issues/21097\nhttps://gitlab.com/wireshark/wireshark/-/issues/21098\nhttps://www.wireshark.org/security/wnpa-sec-2026-26.html"], "threat_severity": "Moderate"}