Linux Distros Unpatched Vulnerability : CVE-2023-22466

🗓️ 27 Aug 2025 00:00:00Reported by TenableType

Tokio CVE-2023-22466 allows remote named pipe access if pipe_mode resets reject_remote_clients; fixed from 1.24.0.

Reporter	Title	Published	Views	Family All 31
IBM Security Bulletins	Security Bulletin: IBM Instana Observability is affected by multiple vulnerabilities within Instana Agent container image	4 May 202607:40	–	ibm
CBLMariner	CVE-2023-22466 affecting package rust 1.59.0-1	12 Jan 202509:15	–	cbl_mariner
CBLMariner	CVE-2023-22466 affecting package kata-containers for versions less than 3.2.0.azl0-1	9 Apr 202420:48	–	cbl_mariner
CBLMariner	CVE-2023-22466 affecting package netavark 1.0.3-5	12 Jan 202509:15	–	cbl_mariner
CBLMariner	CVE-2023-22466 affecting package rpm-ostree 2022.1-8	12 Jan 202509:15	–	cbl_mariner
CBLMariner	CVE-2023-22466 affecting package rust for versions less than 1.72.0-2	11 Oct 202301:41	–	cbl_mariner
Chainguard	CVE-2023-22466 vulnerabilities	4 Jan 202322:15	–	cgr
Circl	CVE-2023-22466	5 Jan 202300:18	–	circl
CNNVD	Tokio 安全漏洞	4 Jan 202300:00	–	cnnvd
CVE	CVE-2023-22466	4 Jan 202321:47	–	cve

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2023-22466
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(257755);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/08/27");

  script_cve_id("CVE-2023-22466");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2023-22466");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Tokio is a runtime for writing applications with Rust. Starting with version 1.7.0 and prior to versions
    1.18.4, 1.20.3, and 1.23.1, when configuring a Windows named pipe server, setting `pipe_mode` will reset
    `reject_remote_clients` to `false`. If the application has previously configured `reject_remote_clients`
    to `true`, this effectively undoes the configuration. Remote clients may only access the named pipe if the
    named pipe's associated path is accessible via a publicly shared folder (SMB). Versions 1.23.1, 1.20.3,
    and 1.18.4 have been patched. The fix will also be present in all releases starting from version 1.24.0.
    Named pipes were introduced to Tokio in version 1.7.0, so releases older than 1.7.0 are not affected. As a
    workaround, ensure that `pipe_mode` is set first after initializing a `ServerOptions`. (CVE-2023-22466)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2023-22466");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-22466");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/01/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/27");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:rust-tokio");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-22.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-22.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "22.04",
        "pkgs": [
          {"reference": "rust-tokio"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

27 Aug 2025 00:00Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.15.4

EPSS0.00196

SSVC