Input validation error in Wireshark - CVE-2026-15169
Published: July 9, 2026
Wireshark
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to improper input validation in the UMTS FP protocol dissector when parsing malformed packet data. A remote attacker can inject a malformed packet onto the wire or trick a victim into opening a malformed packet trace file to cause a denial of service.
User interaction is required when exploitation is performed via a crafted packet trace file.