Input validation error in Wireshark - CVE-2026-15173
Published: July 9, 2026
Wireshark
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to improper input validation in the pcapng file parser when parsing a malformed packet trace file. A remote attacker can trick the victim into opening a crafted packet trace file to cause a denial of service.
User interaction is required to open a crafted packet trace file.