CVE-2026-5299
- Source
- https://cve.org/CVERecord?id=CVE-2026-5299
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-5299.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-5299
- Downstream
- Related
- Published
- 2026-04-30T05:39:24.216Z
- Modified
- 2026-05-28T04:12:05.019051070Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Uncontrolled Recursion in Wireshark
- Details
-
ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
- Database specific
{ "cwe_ids": [ "CWE-674" ], "cna_assigner": "GitLab", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/5xxx/CVE-2026-5299.json" }- References
Affected packages
Git / github.com/wireshark/wireshark
Affected ranges
- Type
- GIT
- Repo
- https://github.com/wireshark/wireshark
- Events
-
IntroducedLast affectedIntroducedLast affected
- Database specific
{ "source": "CPE_RANGE", "extracted_events": [ { "introduced": "4.4.0" }, { "last_affected": "4.4.14" }, { "introduced": "4.6.0" }, { "last_affected": "4.6.4" } ], "cpe": "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*" }
Affected versions
v4.*
v4.4.0
v4.4.1
v4.4.10
v4.4.10rc0
v4.4.11
v4.4.11rc0
v4.4.12
v4.4.12rc0
v4.4.13
v4.4.13rc0
v4.4.14
v4.4.14rc0
v4.4.1rc0
v4.4.2
v4.4.2rc0
v4.4.3
v4.4.3rc0
v4.4.4
v4.4.4rc0
v4.4.5
v4.4.5rc0
v4.4.6
v4.4.6rc0
v4.4.7
v4.4.7rc0
v4.4.8
v4.4.8rc0
v4.4.9
v4.4.9rc0
v4.6.0
v4.6.1
v4.6.1rc0
v4.6.2
v4.6.2rc0
v4.6.3
v4.6.3rc0
v4.6.4
v4.6.4rc0
v4.6.7rc0
wireshark-4.*
wireshark-4.4.0
wireshark-4.4.1
wireshark-4.4.2
wireshark-4.4.3
wireshark-4.4.4
wireshark-4.4.5
wireshark-4.4.6
wireshark-4.4.7
wireshark-4.4.8
wireshark-4.4.9
Git / gitlab.com/wireshark/wireshark
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.com/wireshark/wireshark
- Events
-
IntroducedLast affectedIntroducedLast affected
- Database specific
{ "source": "CPE_RANGE", "cpe": "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "4.4.0" }, { "last_affected": "4.4.14" }, { "introduced": "4.6.0" }, { "last_affected": "4.6.4" } ] }
Affected versions
v4.*
v4.4.0
v4.4.1
v4.4.10
v4.4.10rc0
v4.4.11
v4.4.11rc0
v4.4.12
v4.4.12rc0
v4.4.13
v4.4.13rc0
v4.4.14
v4.4.14rc0
v4.4.1rc0
v4.4.2
v4.4.2rc0
v4.4.3
v4.4.3rc0
v4.4.4
v4.4.4rc0
v4.4.5
v4.4.5rc0
v4.4.6
v4.4.6rc0
v4.4.7
v4.4.7rc0
v4.4.8
v4.4.8rc0
v4.4.9
v4.4.9rc0
v4.6.0
v4.6.1
v4.6.1rc0
v4.6.2
v4.6.2rc0
v4.6.3
v4.6.3rc0
v4.6.4
v4.6.4rc0
wireshark-4.*
wireshark-4.4.0
wireshark-4.4.1
wireshark-4.4.2
wireshark-4.4.3
wireshark-4.4.4
wireshark-4.4.5
wireshark-4.4.6
wireshark-4.4.7
wireshark-4.4.8
wireshark-4.4.9