Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Micro 5.2 package avahi, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (12)
CVE-2025-68468 — CVSS 6.5 (medium): Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier…
CVE-2026-24401 — CVSS 6.5 (medium): Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions 0.9rc2 and below…
CVE-2025-68471 — CVSS 6.5 (medium): Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier…
CVE-2023-38469 — CVSS 6.2 (medium): A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.
CVE-2023-38473 — CVSS 6.2 (medium): A vulnerability was found in Avahi. A reachable assertion exists in the avahi_alternative_host_name() function.
CVE-2023-38472 — CVSS 6.2 (medium): A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.
CVE-2023-38470 — CVSS 6.2 (medium): A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label() function.
CVE-2023-38471 — CVSS 6.2 (medium): A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.
CVE-2023-1981 — CVSS 5.5 (medium): A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemon to…
CVE-2025-68276 — CVSS 5.5 (medium): Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, an…
CVE-2024-52616 — CVSS 5.3 (medium): A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them…
CVE-2024-52615 — CVSS 5.3 (medium): A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where…