Linux Distros Unpatched Vulnerability : CVE-2023-4236

🗓️ 07 Aug 2025 00:00:00Reported by This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.Type

nessus

nessus🔗 www.tenable.com👁 2 Views

Unpatched Linux hosts have BIND 9 DNS-over-TLS flaw CVE-2023-4236 causing named crash.

Reporter	Title	Published	Views	Family All 61
AlpineLinux	CVE-2023-4236	20 Sep 202312:32	–	alpinelinux
Tenable Nessus	ISC BIND 9.18.0 < 9.18.19 / 9.18.11-S1 < 9.18.19-S1 Assertion Failure (cve-2023-4236)	20 Sep 202300:00	–	nessus
Tenable Nessus	Debian DSA-5504-1 : bind9 - security update	23 Sep 202300:00	–	nessus
Tenable Nessus	Fedora 40 : bind / bind-dyndb-ldap (2023-687525fcca)	29 Apr 202400:00	–	nessus
Tenable Nessus	Fedora 37 : bind / bind-dyndb-ldap (2023-87502c4a93)	11 Oct 202300:00	–	nessus
Tenable Nessus	Fedora 38 : bind / bind-dyndb-ldap (2023-a2621f58a9)	28 Sep 202300:00	–	nessus
Tenable Nessus	Fedora 39 : bind / bind-dyndb-ldap (2023-b4acb0f7c6)	7 Nov 202300:00	–	nessus
Tenable Nessus	NewStart CGSL MAIN 7.02 : bind Multiple Vulnerabilities (NS-SA-2025-0108)	25 Jul 202500:00	–	nessus
Tenable Nessus	TencentOS Server 4: bind (TSSA-2024:0612)	16 Jun 202500:00	–	nessus
Tenable Nessus	Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Bind vulnerabilities (USN-6390-1)	20 Sep 202300:00	–	nessus

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2023-4236
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

07 Aug 2025 00:00Current

8High risk

Vulners AI Score8

CVSS 3.17.5

EPSS0.00177

bind nine dns over tls named crash unpatched vulnerability no vendor patch