Lucene search
Ubuntu.comUB:CVE-2023-38470HistoryNov 02, 2023 - 12:00 a.m.
CVE-2023-38470
2023-11-0200:00:00
ubuntu.com
ubuntu.com
11
vulnerability
avahi
assertion
avahi_escape_label
unix
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
6.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
A vulnerability was found in Avahi. A reachable assertion exists in the
avahi_escape_label() function.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | avahi | < 0.7-3.1ubuntu1.3+esm2 | UNKNOWN |
| ubuntu | 20.04 | noarch | avahi | < 0.7-4ubuntu7.3 | UNKNOWN |
| ubuntu | 22.04 | noarch | avahi | < 0.8-5ubuntu5.2 | UNKNOWN |
| ubuntu | 23.04 | noarch | avahi | < 0.8-6ubuntu1.23.04.2 | UNKNOWN |
| ubuntu | 23.10 | noarch | avahi | < 0.8-10ubuntu1.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | avahi | < 0.6.31-4ubuntu1.3+esm3 | UNKNOWN |
| ubuntu | 16.04 | noarch | avahi | < 0.6.32~rc+dfsg-1ubuntu2.3+esm3 | UNKNOWN |
Related
alpinelinux
alpinelinux
CVE-2023-38470
2023-11-02 15:15:08
debiancve
debiancve
CVE-2023-38470
2023-11-02 15:15:08
redhatcve
redhatcve
CVE-2023-38470
2023-07-18 12:07:55
openvas
openvas
Huawei EulerOS: Security Advisory for avahi (EulerOS-SA-2023-3290)
2023-12-12 00:00:00
Huawei EulerOS: Security Advisory for avahi (EulerOS-SA-2024-1001)
2024-01-05 00:00:00
Huawei EulerOS: Security Advisory for avahi (EulerOS-SA-2023-3322)
2023-12-12 00:00:00
cvelist
cvelist
CVE-2023-38470 Reachable assertion in avahi_escape_label
2023-11-02 14:57:28
nessus
nessus
EulerOS Virtualization 2.9.1 : avahi (EulerOS-SA-2024-1027)
2024-01-16 00:00:00
EulerOS 2.0 SP9 : avahi (EulerOS-SA-2023-3322)
2024-01-16 00:00:00
EulerOS 2.0 SP11 : avahi (EulerOS-SA-2023-3234)
2024-01-16 00:00:00
cgr
cgr
CVE-2023-38470 vulnerabilities
2024-05-19 03:07:16
veracode
veracode
Reachable Assertion
2024-03-17 16:32:59
nvd
nvd
CVE-2023-38470
2023-11-02 15:15:08
wolfi
wolfi
CVE-2023-38470 vulnerabilities
2024-07-05 15:46:04
osv
osv
CVE-2023-38470
2023-11-02 15:15:08
avahi vulnerabilities
2023-11-20 15:29:03
Moderate: avahi security update
2024-04-30 00:00:00
prion
prion
Authentication flaw
2023-11-02 15:15:00
cve
cve
CVE-2023-38470
2023-11-02 15:15:08
amazon
amazon
Medium: avahi
2023-08-03 20:16:00
Medium: avahi
2023-08-03 18:09:00
almalinux
almalinux
Moderate: avahi security update
2024-04-30 00:00:00
Moderate: avahi security update
2023-12-14 00:00:00
oraclelinux
oraclelinux
avahi security update
2024-05-03 00:00:00
avahi security update
2023-12-15 00:00:00
mageia
mageia
Updated avahi packages fix security vulnerabilities
2024-01-25 14:21:08
ibm
ibm
Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to denial of service due to multiple CVEs in Avahi
2023-07-28 14:38:12
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues
2024-05-07 17:07:44
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-01-31 19:31:55
redhat
redhat
(RHSA-2024:2433) Moderate: avahi security update
2024-04-30 06:15:41
(RHSA-2024:0418) Moderate: avahi security update
2024-01-24 14:40:25
(RHSA-2023:7836) Moderate: avahi security update
2023-12-14 08:16:14
ubuntu
ubuntu
Avahi vulnerabilities
2023-11-20 00:00:00
rocky
rocky
avahi security update
2024-01-09 04:07:32
hp
hp
HP ThinPro 8.1 SP 2 Security Updates
2024-04-12 00:00:00
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
6.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for UB:CVE-2023-38470