HIGHCVE-2026-5656Published Modified CNA GitLab
CVE-2026-5656: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Wireshark
Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution
Metrics
- CVSS v3.1
- 7.0
- Severity
- HIGH
- Fixed in
- 4.4.15
- Affected Products
- 1
Fix available
4.4.154.6.5
Affected packages
- Wireshark Foundation / Wireshark< 4.6.5 (from 4.6.0) · < 4.4.15 (from 4.4.0)
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HReferences