CVE-2026-5406: Uncontrolled Recursion in Wireshark
Published Apr 30, 2026
·Updated
FC-SWILS protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Affected Software
3 affected components
Wireshark Wireshark>=4.6.0<=4.6.4, >=4.4.0<=4.4.14
Wireshark Wireshark>=4.4.0<=4.4.14
Wireshark Wireshark>=4.6.0<=4.6.4
Remediation
Information
Upgrade to version 4.6.5 or above
Event History
Apr 30, 2026
CVE Published
via MITRE·05:40 AM
Data Sourced
via MITRE·05:40 AM
RemedyDescriptionSeverityWeakness
Data Sourced
via NVD·07:16 AM
DescriptionSeverityWeaknessAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2026-5406?
CVE-2026-5406 is classified as a denial of service vulnerability due to uncontrolled recursion in the Wireshark FC-SWILS protocol dissector.
2
How do I fix CVE-2026-5406?
To fix CVE-2026-5406, upgrade Wireshark to version 4.6.5 or later if you are using versions 4.6.0 to 4.6.4, or upgrade to version 4.4.15 or later if you are using versions 4.4.0 to 4.4.14.
3
What versions of Wireshark are affected by CVE-2026-5406?
CVE-2026-5406 affects Wireshark versions 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14.
4
Can CVE-2026-5406 be exploited remotely?
Yes, CVE-2026-5406 can be exploited remotely, allowing an attacker to cause a denial of service.
5
What is the impact of CVE-2026-5406?
The impact of CVE-2026-5406 is a crash of Wireshark, leading to denial of service for users.