Cyber Resilience

CVE-2023-4806

MediumUpdated

Published: 18 September 2023

Published
18 September 2023
Modified
12 May 2026
KEV Added
Patch
CVSS Score v3.1 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0190 83.6th percentile
Risk Priority 13 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-4806 is a medium-severity Use After Free (CWE-416) vulnerability in Redhat Enterprise Linux. Its CVSS base score is 5.9 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 16.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r…

more

and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

The use-after-free vulnerability in glibc's getaddrinfo function can be triggered under specific rare conditions to cause application crashes, enabling endpoint denial of service through application or system exploitation.

Affected Assets

gnu
glibc
2.33
redhat
codeready linux builder eus
9.2
redhat
codeready linux builder eus for power little endian
9.0_ppc64le
redhat
codeready linux builder eus for power little endian eus
9.2_ppc64le
redhat
codeready linux builder for arm64
9.0_aarch64
redhat
codeready linux builder for arm64 eus
9.2_aarch64
redhat
codeready linux builder for ibm z systems
9.0_s390x
redhat
codeready linux builder for ibm z systems eus
9.2_s390x
redhat
enterprise linux
7.0, 8.0, 9.0
redhat
enterprise linux eus
8.8, 9.2
+12 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-416

Use-after-free exploits that achieve arbitrary code execution are blocked or significantly hardened by non-executable pages and ASLR.

References