Home
LOW: 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:NDefault status
unaffected
4.6.0 (semver) before 4.6.7
affected
4.4.0 (semver) before 4.4.17
affected
Description
BLF file parser in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows possible information disclosure
Problem types
CWE-457: Use of Uninitialized Variable
Product status
4.6.0 (semver) before 4.6.7
4.4.0 (semver) before 4.4.17
Credits
Thai Duong Tran
References
gitlab.com/wireshark/wireshark/-/work_items/21361
www.wireshark.org/security/wnpa-sec-2026-60.html
gitlab.com/wireshark/wireshark/-/work_items/21361