VDB
DEBIAN-CVE-2006-5461
DEBIAN-CVE-2006-5461
PUBLISHED
CVSS 6.900000095367432 MEDIUM
Avahi before 0.6.15 does not verify the sender identity of netlink messages to ensure that they come from the kernel instead of another process, which allows local users to spoof network changes to Avahi.
Risk Scores
CVSS v4.0
6.900000095367432
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | avahi | 0, 0, 0 |
| Debian:12 | avahi | 0, 0, 0 |
| Debian:13 | avahi | 0, 0, 0 |
| Debian:14 | avahi | 0, 0, 0 |
Timeline
- Nov 14, 2006 CVE Published
- Apr 28, 2026 CVE Updated