FMP/NOTIFY protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service

Project Subscriptions

Vendors Products
Wireshark Subscribe
Wireshark Subscribe
Advisories

No advisories yet.

Fixes

Solution

Upgrade to version 4.6.7 or above


Workaround

No workaround given by the vendor.

History

Thu, 09 Jul 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 09 Jul 2026 12:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1286
References
Metrics threat_severity

None

threat_severity

Moderate


Wed, 08 Jul 2026 23:15:00 +0000

Type Values Removed Values Added
First Time appeared Wireshark
Wireshark wireshark
Vendors & Products Wireshark
Wireshark wireshark

Wed, 08 Jul 2026 21:15:00 +0000

Type Values Removed Values Added
Description FMP/NOTIFY protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service
Title Unchecked Input for Loop Condition in Wireshark
Weaknesses CWE-606
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H'}


Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitLab

Published:

Updated: 2026-07-09T13:42:52.886Z

Reserved: 2026-07-08T20:45:58.875Z

Link: CVE-2026-15172

cve-icon Vulnrichment

Updated: 2026-07-09T13:42:44.507Z

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-07-08T20:51:20Z

Links: CVE-2026-15172 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-07-09T04:00:11Z

Weaknesses