Lucene search
K

29 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

EulerOS Virtualization 2.10.0 : avahi (EulerOS-SA-2026-1549)

According to the versions of the avahi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them...

5.3CVSS7.2AI score0.00681EPSS
Exploits0References3
OSV
OSV
added 2026/02/17 9:43 a.m.5 views

SUSE-SU-2026:20491-1 Security update for avahi

This update for avahi fixes the following issues: - CVE-2024-52615: Fixed possible DNS response injection via the use of fixed source ports for wide-area DNS queries bsc1233421...

5.3CVSS6.9AI score0.00574EPSS
Exploits0References3
Redos
Redos
added 2026/02/09 12:0 a.m.8 views

ROS-20260209-73-0001

A vulnerability in the Avahi Wide-Area Local Area Network Service Discovery System is related to the use of insufficiently randomized values. Exploitation of the vulnerability could allow an attacker acting remotely to affect the confidentiality of protected information through a specially crafte...

5.3CVSS5.6AI score0.00574EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.5 views

RockyLinux 9 : avahi (RLSA-2025:7437)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7437 advisory. avahi: Avahi Wide-Area DNS Predictable Transaction IDs CVE-2024-52616 Tenable has extracted the preceding description block directly from the RockyLinux security...

5.3CVSS6.7AI score0.00681EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.4 views

RockyLinux 9 : avahi (RLSA-2025:11402)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:11402 advisory. avahi: Avahi Wide-Area DNS Uses Constant Source Port CVE-2024-52615 Tenable has extracted the preceding description block directly from the RockyLinux security...

5.3CVSS6.7AI score0.00574EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.5 views

RockyLinux 10 : avahi (RLSA-2025:16441)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:16441 advisory. avahi: Avahi Wide-Area DNS Uses Constant Source Port CVE-2024-52615 Tenable has extracted the preceding description block directly from the RockyLinux security...

5.3CVSS6.7AI score0.00574EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2025/10/04 12:11 a.m.4 views

avahi security update

An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Avahi is an implementation of the DNS Service Discovery and Multicast DNS...

5.3CVSS8.1AI score0.00681EPSS
Exploits0
Rockylinux
Rockylinux
added 2025/10/04 12:11 a.m.3 views

avahi security update

An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Avahi is an implementation of the DNS Service Discovery and Multicast DNS...

5.3CVSS6.6AI score0.00574EPSS
Exploits0
OSV
OSV
added 2025/10/04 12:11 a.m.4 views

RLSA-2025:7437 Moderate: avahi security update

Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other...

5.3CVSS6.3AI score0.00681EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2025/10/03 7:56 p.m.5 views

avahi security update

An update is available for avahi. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Avahi is an implementation of the DNS Service Discovery and Multicast DNS...

5.3CVSS6.6AI score0.00574EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/09/24 6:55 a.m.9 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52615: wide-area DNS uses constant source port for queries and can expose the Avahi-daemon to DNS spoofing attacks bsc1233421. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.3CVSS7AI score0.00574EPSS
Exploits0References4
OSV
OSV
added 2025/09/23 12:0 a.m.3 views

ALSA-2025:16441 Moderate: avahi security update

Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other...

5.3CVSS6.6AI score0.00574EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/23 12:0 a.m.5 views

RHEL 10 : avahi (RHSA-2025:16441)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:16441 advisory. Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service...

5.3CVSS6.8AI score0.00574EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/09/18 10:35 a.m.2 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52615: wide-area DNS uses constant source port for queries and can expose the Avahi-daemon to DNS spoofing attacks bsc1233421. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.3CVSS5.5AI score0.00574EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/07/21 2:20 a.m.20 views

avahi: Avahi Wide-Area DNS Uses Constant Source Port

A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected...

5.3CVSS7.1AI score0.00574EPSS
Exploits0References5
OSV
OSV
added 2025/05/12 2:34 p.m.3 views

SUSE-SU-2025:20308-1 Security update for avahi

This update for avahi fixes the following issues: - CVE-2024-52616: Fixed predictable transaction IDs for Wide-Area DNS bsc1233420 - Drop rcFOO symlinks jscPED-266...

5.3CVSS7.1AI score0.00681EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/05/12 2:33 p.m.2 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52616: Fixed predictable transaction IDs for Wide-Area DNS bsc1233420 Drop rcFOO symlinks jscPED-266. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS7.3AI score0.00681EPSS
Exploits0References6
OSV
OSV
added 2025/01/12 6:41 a.m.9 views

MGASA-2025-0007 Updated avahi packages fix security vulnerabilities

Avahi wide-area dns uses constant source port. CVE-2024-52615 Avahi wide-area dns predictable transaction ids. CVE-2024-52616...

5.3CVSS5.2AI score0.00681EPSS
Exploits0References3
Mageia
Mageia
added 2025/01/12 6:41 a.m.32 views

Updated avahi packages fix security vulnerabilities

Avahi wide-area dns uses constant source port. CVE-2024-52615 Avahi wide-area dns predictable transaction ids. CVE-2024-52616...

5.3CVSS6.9AI score0.00681EPSS
Exploits0References2
Amazon
Amazon
added 2024/12/19 12:0 a.m.4 views

Medium: avahi

Issue Overview: avahi: Avahi Wide-Area DNS Uses Constant Source Port CVE-2024-52615 avahi: Avahi Wide-Area DNS Predictable Transaction IDs CVE-2024-52616 Affected Packages: avahi Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...

5.3CVSS7AI score0.00681EPSS
Exploits0
Rows per page
Query Builder