CVE-2023-38471

EPSS 0.01%
Veröffentlicht 02.11.2023 15:15:08
Zuletzt bearbeitet 03.11.2025 22:16:24
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Avahi ≫ Avahi Version < 0.9

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Enterprise Linux Version9.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.005

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
secalert@redhat.com	6.2	2.5	3.6	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-617 Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

https://access.redhat.com/security/cve/CVE-2023-38471

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2191691

Third Party Advisory

Issue Tracking

https://lists.debian.org/debian-lts-announce/2024/12/msg00011.html

https://nvd.nist.gov/vuln/detail/CVE-2023-38471

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-38471

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-38471

EUVD