CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
52.2%
galera-4 is vulnerable to Denial of Service (DoS). This vulnerability allows an attacker to cause MariaDB to crash by sending a specially crafted OpenVAS port scan to ports 3306 and 4567. The impact of this vulnerability is high, as it could be exploited by attackers to disrupt the availability of MariaDB servers.
access.redhat.com/errata/RHSA-2023:5683
access.redhat.com/errata/RHSA-2023:5684
access.redhat.com/errata/RHSA-2023:6821
access.redhat.com/errata/RHSA-2023:6822
access.redhat.com/errata/RHSA-2023:6883
access.redhat.com/errata/RHSA-2023:7633
access.redhat.com/security/cve/CVE-2023-5157
bugzilla.redhat.com/show_bug.cgi?id=2240246
security-tracker.debian.org/tracker/CVE-2023-5157