These kind of tools have always had a broad attack surface. I've assumed state level actors already have exploits for them, mostly based on when I've used such tools for mundane network maintenance tasks and somehow do something that triggered an old-fashioned segfault.

Wireshark dissectors (protocol decoders) are basically all written in C, and anyone sending packets can pick a dissector.