Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-qx9d-jfsn-6fdu
Vulnerability ID VCID-qx9d-jfsn-6fdu
Aliases CVE-2006-5461
Summary Avahi fails to verify the origin of netlink messages, which could allow local users to spoof network changes.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2006-5461
cvssv2 2.1 https://nvd.nist.gov/vuln/detail/CVE-2006-5461
Reference id Reference type URL
http://avahi.org/milestone/Avahi%200.6.15
https://api.first.org/data/v1/epss?cve=CVE-2006-5461
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5461
http://secunia.com/advisories/22807
http://secunia.com/advisories/22852
http://secunia.com/advisories/22932
http://secunia.com/advisories/23020
http://secunia.com/advisories/23042
http://securitytracker.com/id?1017257
https://exchange.xforce.ibmcloud.com/vulnerabilities/30207
https://tango.0pointer.de/pipermail/avahi-tickets/2006-November/000320.html
http://www.gentoo.org/security/en/glsa/glsa-200611-13.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:215
http://www.novell.com/linux/security/advisories/2006_26_sr.html
http://www.securityfocus.com/bid/21016
http://www.vupen.com/english/advisories/2006/4474
cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*
CVE-2006-5461 https://nvd.nist.gov/vuln/detail/CVE-2006-5461
GLSA-200611-13 https://security.gentoo.org/glsa/200611-13
USN-380-1 https://usn.ubuntu.com/380-1/
No exploits are available.
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2006-5461
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.23425
EPSS Score 0.00079
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:14:21.589008+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200611-13 38.0.0