CVE-2023-5157

EPSS 0.27%
Veröffentlicht 27.09.2023 15:19:41
Zuletzt bearbeitet 01.10.2025 15:15:41
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mariadb ≫ Mariadb Version < 10.3.36

Mariadb ≫ Mariadb Version >= 10.4.0 < 10.4.26

Mariadb ≫ Mariadb Version >= 10.5.0 < 10.5.17

Mariadb ≫ Mariadb Version >= 10.6.0 < 10.6.9

Mariadb ≫ Mariadb Version >= 10.7.0 < 10.7.5

Mariadb ≫ Mariadb Version >= 10.8.0 < 10.8.4

Fedoraproject ≫ Fedora Version38

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Enterprise Linux Version9.0

Redhat ≫ Enterprise Linux Eus Version8.6

Redhat ≫ Enterprise Linux Eus Version8.8

Redhat ≫ Enterprise Linux Eus Version9.0

Redhat ≫ Enterprise Linux Eus Version9.2

Redhat ≫ Enterprise Linux For Arm 64 Version8.0_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Version9.0_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Eus Version8.8_aarch64

Redhat ≫ Enterprise Linux For Ibm Z Systems Version8.0_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Version9.0_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Version9.2_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.6_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.8_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version9.2_s390x

Redhat ≫ Enterprise Linux For Power Little Endian Version8.0_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Version9.0_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.8_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version9.2_ppc64le

Redhat ≫ Enterprise Linux Server Aus Version8.4

Redhat ≫ Enterprise Linux Server Aus Version8.6

Redhat ≫ Enterprise Linux Server Aus Version9.2

Redhat ≫ Enterprise Linux Server Tus Version8.4

Redhat ≫ Enterprise Linux Server Tus Version8.6

Redhat ≫ Enterprise Linux Server Tus Version8.8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.27%	0.507

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
secalert@redhat.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

https://access.redhat.com/errata/RHSA-2023:5683

Third Party Advisory

https://access.redhat.com/errata/RHSA-2023:5684

Third Party Advisory

https://access.redhat.com/errata/RHSA-2023:6821

Third Party Advisory

https://access.redhat.com/errata/RHSA-2023:6822

Third Party Advisory

https://access.redhat.com/errata/RHSA-2023:6883

Third Party Advisory

https://access.redhat.com/errata/RHSA-2023:7633

Third Party Advisory

https://access.redhat.com/security/cve/CVE-2023-5157

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2240246

Third Party Advisory

Issue Tracking

https://access.redhat.com/errata/RHSA-2023:5259

https://nvd.nist.gov/vuln/detail/CVE-2023-5157

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-5157

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-5157

EUVD