CVE-2024-52615

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Avahi-daemon (affected versions not specified)

Description A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-330

Related Identifiers

ALSA-2025:16441

BDU:2025-16178

CLEANSTART-2026-MB75553

CVE-2024-52615

ECHO-E755-2177-A945

INFSA-2025_11402

MGASA-2025-0007

OESA-2025-2251

OPENSUSE-SU-2025:15575-1

OPENSUSE-SU-2026:20013-1

RHSA-2025:11402

RHSA-2025:16441

RHSA-2025_11402

SUSE-SU-2025:03266-1

SUSE-SU-2025:03331-1

SUSE-SU-2025:03332-1

SUSE-SU-2025:03333-1

SUSE-SU-2025_03332-1

SUSE-SU-2025_03333-1

SUSE-SU-2026:20027-1

SUSE-SU-2026:20070-1

SUSE-SU-2026:20491-1

SUSE-SU-2026:20525-1

Affected Products

Avahi-Daemon

Debian

Red Hat

Red Os

Rocky Linux

Suse

CVE-2024-52615

Weakness Enumeration

Related Identifiers

Affected Products

References · 82