Unknown
CVE-2023-4813
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2023-4813
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
A flaw was found in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with SUCCESS=continue or SUCCESS=merge.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
- fedoraproject,
- gnu,
- netapp,
- redhat
Products
- active iq unified manager -,
- enterprise linux 8.0,
- enterprise linux 9.0,
- enterprise linux eus 8.8,
- enterprise linux eus 9.2,
- enterprise linux for ibm z systems eus s390x 9.2,
- enterprise linux for ibm z systems s390x 9.2,
- enterprise linux for power little endian 9.2 ppc64le,
- enterprise linux for power little endian eus 9.2 ppc64le,
- enterprise linux server aus 9.2,
- enterprise linux server tus 8.8,
- fedora 38,
- glibc,
- h300s firmware -,
- h410c firmware -,
- h410s firmware -,
- h500s firmware -,
- h700s firmware -
References
Miscellaneous
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
