Copyright © 2012 Red Hat, Inc. All rights reserved. Moderate 2026-04-30T05:33:59 Wireshark: Wireshark: Denial of Service via MBIM protocol dissector infinite loop 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CWE-835

A flaw was found in Wireshark. A remote attacker could exploit an infinite loop vulnerability within the MBIM (Mobile Broadband Interface Model) protocol dissector. This could lead to a denial of service (DoS) condition, making the application unresponsive.

To mitigate this issue, avoid opening untrusted capture files in Wireshark. Additionally, the MBIM protocol dissector can be disabled to prevent processing of potentially malicious MBIM data. This can be achieved by navigating to `Analyze -> Enabled Protocols...` in Wireshark and unchecking the "MBIM" protocol, or by starting Wireshark from the command line with `-d mbim==FALSE`. Disabling the dissector may impact the ability to analyze legitimate MBIM traffic. A restart of Wireshark is required for the change to take effect. Red Hat Enterprise Linux 10 Fix deferred wireshark Red Hat Enterprise Linux 6 Fix deferred wireshark Red Hat Enterprise Linux 7 Fix deferred wireshark Red Hat Enterprise Linux 8 Fix deferred wireshark Red Hat Enterprise Linux 9 Fix deferred wireshark https://www.cve.org/CVERecord?id=CVE-2026-6519 https://nvd.nist.gov/vuln/detail/CVE-2026-6519 https://gitlab.com/wireshark/wireshark/-/work_items/21184 https://www.wireshark.org/security/wnpa-sec-2026-41.html