CVE-2023-38470— Reachable assertion in avahi_escape_label

CVSS 6.2 · Medium EPSS 0.01% · P1 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-38470

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Reachable assertion in avahi_escape_label

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label() function.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

可达断言

Source: NVD (National Vulnerability Database)

Vulnerability Title

Avahi 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Avahi是一套用于Linux的本地服务发现工具。 Avahi 存在安全漏洞，该漏洞源于avahi_escape_label() 函数中存在断言失败情况。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
-	avahi	-	-
Red Hat	Red Hat Enterprise Linux 6	-	`cpe:/o:redhat:enterprise_linux:6`
Red Hat	Red Hat Enterprise Linux 7	-	`cpe:/o:redhat:enterprise_linux:7`
Red Hat	Red Hat Enterprise Linux 8	-	`cpe:/o:redhat:enterprise_linux:8`
Red Hat	Red Hat Enterprise Linux 9	-	`cpe:/o:redhat:enterprise_linux:9`
Fedora	Fedora	-	-

II. Public POCs for CVE-2023-38470

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-38470

请登录查看更多情报信息。

https://access.redhat.com/security/cve/CVE-2023-38470vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2191690issue-trackingx_refsource_REDHAT
https://nvd.nist.gov/vuln/detail/CVE-2023-38470

Same Patch Batch · n/a · 2023-11-02 · 29 CVEs total

CVE-2022-4900	6.2 MEDIUM	Potential buffer overflow in php_cli_server_startup_workers
CVE-2023-38473	6.2 MEDIUM	Reachable assertion in avahi_alternative_host_name
CVE-2023-38472	6.2 MEDIUM	Reachable assertion in avahi_rdata_parse
CVE-2023-38471	6.2 MEDIUM	Reachable assertion in dbus_set_host_name
CVE-2023-38469	6.2 MEDIUM	Reachable assertion in avahi_dns_packet_append_record
CVE-2023-3164	5.5 MEDIUM	Heap-buffer-overflow in extractimagesection()
CVE-2023-5917	2.4 LOW	phpBB Smiley Pack acp_icons.php main cross site scripting
CVE-2023-39284		Insyde InsydeH2O 安全漏洞
CVE-2023-46695		Django 安全漏洞
CVE-2023-47204		transmute-core 安全漏洞
CVE-2023-43193		Submitty 安全漏洞
CVE-2023-43336		FreePBX 安全漏洞
CVE-2023-46475		Nature Easy Soft Network Technology ZenTao 安全漏洞
CVE-2023-46925		Reportico 安全漏洞
CVE-2023-46958		lmxcms 安全漏洞
CVE-2023-31579		Dromara Lamp-Cloud 安全漏洞
CVE-2023-39042		Line 安全漏洞
CVE-2023-39047		Line 安全漏洞
CVE-2023-39048		Line 安全漏洞
CVE-2023-39050		Line 安全漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: avahi

Same vendor: n/a

Same weakness: CWE-617

V. Comments for CVE-2023-38470

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-38470— Reachable assertion in avahi_escape_label

I. Basic Information for CVE-2023-38470

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-38470

III. Intelligence Information for CVE-2023-38470

Same Patch Batch · n/a · 2023-11-02 · 29 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-38470

Leave a comment