Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:43590
HistoryOct 08, 2023 - 8:11 a.m.

Denial Of Service (DoS)

2023-10-0808:11:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
denial of service
galera-4
vulnerability
attack
mariadb
openvas
port scan
exploit
availability

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

52.2%

JSON

galera-4 is vulnerable to Denial of Service (DoS). This vulnerability allows an attacker to cause MariaDB to crash by sending a specially crafted OpenVAS port scan to ports 3306 and 4567. The impact of this vulnerability is high, as it could be exploited by attackers to disrupt the availability of MariaDB servers.

Related

redhat 6
redos 1
prion 1
nessus 20
ubuntucve 1
cvelist 1
redhatcve 1
nvd 1
mariadbunix 1
osv 6
openvas 2
debiancve 1
cve 1
oraclelinux 2
rocky 1
almalinux 2
gentoo 1
redhat
redhat
(RHSA-2023:6821) Important: mariadb:10.5 security update
2023-11-08 15:15:50
(RHSA-2023:6883) Important: galera and mariadb security update
2023-11-13 08:37:55
(RHSA-2023:6822) Important: mariadb:10.5 security update
2023-11-08 15:17:00
redos
redos
ROS-20240404-18
2024-04-04 00:00:00
prion
prion
Denial of service
2023-09-27 15:19:00
nessus
nessus
RHEL 9 : galera and mariadb (RHSA-2023:6883)
2023-11-13 00:00:00
RHEL 8 : mariadb:10.5 (RHSA-2023:6822)
2023-11-08 00:00:00
RHEL 8 : mariadb:10.5 (RHSA-2023:6821)
2023-11-08 00:00:00
ubuntucve
ubuntucve
CVE-2023-5157
2023-09-27 00:00:00
cvelist
cvelist
CVE-2023-5157 Mariadb: node crashes with transport endpoint is not connected mysqld got signal 6
2023-09-26 13:25:24
redhatcve
redhatcve
CVE-2023-5157
2023-09-25 09:51:17
nvd
nvd
CVE-2023-5157
2023-09-27 15:19:41
mariadbunix
mariadbunix
CVE-2023-5157
2023-09-27 15:19:41
osv
osv
BIT-mysql-client-2023-5157
2024-03-06 10:57:13
BIT-mariadb-2023-5157
2024-03-06 10:55:35
CVE-2023-5157
2023-09-27 15:19:41
openvas
openvas
MariaDB DoS Vulnerability (CVE-2023-5157) - Linux
2023-11-30 00:00:00
MariaDB DoS Vulnerability (CVE-2023-5157) - Windows
2023-11-30 00:00:00
debiancve
debiancve
CVE-2023-5157
2023-09-27 15:19:41
cve
cve
CVE-2023-5157
2023-09-27 15:19:41
oraclelinux
oraclelinux
mariadb:10.5 security update
2023-10-13 00:00:00
galera and mariadb security update
2023-10-18 00:00:00
rocky
rocky
mariadb:10.5 security update
2023-10-14 02:08:04
almalinux
almalinux
Important: galera and mariadb security update
2023-10-12 00:00:00
Important: mariadb:10.5 security update
2023-10-12 00:00:00
gentoo
gentoo
MariaDB: Multiple Vulnerabilities
2024-05-08 00:00:00

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

52.2%

JSON
Related for VERACODE:43590
redhat6redos1prion1nessus20ubuntucve1cvelist1redhatcve1nvd1mariadbunix1osv6openvas2debiancve1cve1oraclelinux2rocky1almalinux2gentoo1