/

CVE-2023-1981 Report - Details, Severity, & Advisories

CVE-2023-1981 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

CVE-2023-1981 is a medium-severity vulnerability found in the Avahi library, which can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call. This issue affects various systems, particularly those running certain versions of Avahi, Fedora, and Red Hat Enterprise Linux. The vulnerability has been addressed in some Red Hat Enterprise Linux versions, and a fix has been implemented in the Avahi project on GitHub.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, you'll need to check if your system is running any of the following software configurations: Avahi version 0.7-20, Fedora 37, or Red Hat Enterprise Linux versions 6.0, 7.0, 8.0, and 9.0. This vulnerability can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call, and it has a medium severity rating of 5.5.

What should I do if I'm affected?

If you're affected by the vulnerability, it's important to take action to protect your system. First, check for updates and apply any available patches for your software. If you're using Avahi, update to the latest version, as the issue has likely been fixed. For Red Hat Enterprise Linux and Fedora users, follow their respective security advisories and apply the recommended fixes.

Is CVE-2023-1981 in CISA’s Known Exploited Vulnerabilities Catalog?

As of now, CVE-2023-1981 is not listed in CISA's Known Exploited Vulnerabilities Catalog. This vulnerability, found in the Avahi library, allows an unprivileged user to make a specific DBus call, causing the Avahi daemon to crash. It has a medium severity rating of 5.5. To address this issue, users should update their software and apply any available patches.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-400, which can crash the Avahi daemon through a DBus call. This weakness has been addressed and fixed in the software.

For more details

CVE-2023-1981 is a medium-severity vulnerability that can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call. By updating software and applying available patches, users can mitigate the risk associated with this vulnerability. For a comprehensive understanding of the vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

CVE-2023-1981 Report - Details, Severity, & Advisories

CVE-2023-1981 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

CVE-2023-1981 is a medium-severity vulnerability found in the Avahi library, which can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call. This issue affects various systems, particularly those running certain versions of Avahi, Fedora, and Red Hat Enterprise Linux. The vulnerability has been addressed in some Red Hat Enterprise Linux versions, and a fix has been implemented in the Avahi project on GitHub.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, you'll need to check if your system is running any of the following software configurations: Avahi version 0.7-20, Fedora 37, or Red Hat Enterprise Linux versions 6.0, 7.0, 8.0, and 9.0. This vulnerability can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call, and it has a medium severity rating of 5.5.

What should I do if I'm affected?

If you're affected by the vulnerability, it's important to take action to protect your system. First, check for updates and apply any available patches for your software. If you're using Avahi, update to the latest version, as the issue has likely been fixed. For Red Hat Enterprise Linux and Fedora users, follow their respective security advisories and apply the recommended fixes.

Is CVE-2023-1981 in CISA’s Known Exploited Vulnerabilities Catalog?

As of now, CVE-2023-1981 is not listed in CISA's Known Exploited Vulnerabilities Catalog. This vulnerability, found in the Avahi library, allows an unprivileged user to make a specific DBus call, causing the Avahi daemon to crash. It has a medium severity rating of 5.5. To address this issue, users should update their software and apply any available patches.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-400, which can crash the Avahi daemon through a DBus call. This weakness has been addressed and fixed in the software.

For more details

CVE-2023-1981 is a medium-severity vulnerability that can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call. By updating software and applying available patches, users can mitigate the risk associated with this vulnerability. For a comprehensive understanding of the vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

CVE-2023-1981 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

CVE-2023-1981 is a medium-severity vulnerability found in the Avahi library, which can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call. This issue affects various systems, particularly those running certain versions of Avahi, Fedora, and Red Hat Enterprise Linux. The vulnerability has been addressed in some Red Hat Enterprise Linux versions, and a fix has been implemented in the Avahi project on GitHub.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, you'll need to check if your system is running any of the following software configurations: Avahi version 0.7-20, Fedora 37, or Red Hat Enterprise Linux versions 6.0, 7.0, 8.0, and 9.0. This vulnerability can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call, and it has a medium severity rating of 5.5.

What should I do if I'm affected?

If you're affected by the vulnerability, it's important to take action to protect your system. First, check for updates and apply any available patches for your software. If you're using Avahi, update to the latest version, as the issue has likely been fixed. For Red Hat Enterprise Linux and Fedora users, follow their respective security advisories and apply the recommended fixes.

Is CVE-2023-1981 in CISA’s Known Exploited Vulnerabilities Catalog?

As of now, CVE-2023-1981 is not listed in CISA's Known Exploited Vulnerabilities Catalog. This vulnerability, found in the Avahi library, allows an unprivileged user to make a specific DBus call, causing the Avahi daemon to crash. It has a medium severity rating of 5.5. To address this issue, users should update their software and apply any available patches.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-400, which can crash the Avahi daemon through a DBus call. This weakness has been addressed and fixed in the software.

For more details

CVE-2023-1981 is a medium-severity vulnerability that can cause the Avahi daemon to crash when an unprivileged user makes a specific DBus call. By updating software and applying available patches, users can mitigate the risk associated with this vulnerability. For a comprehensive understanding of the vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.