CVE-2023-5157: 
MariaDB Server vulnerability analysis and mitigation

CVE-2023-5157 is a vulnerability discovered in MariaDB that affects ports 3306 and 4567, where an OpenVAS port scan allows a malicious remote client to cause a denial of service. The vulnerability was reported on September 22, 2023, and affects multiple versions of MariaDB including versions up to 10.4.26, 10.5.17, 10.6.9, 10.7.5, and 10.8.4 (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The issue manifests when a node crashes with 'Transport endpoint is not connected mysqld got signal 6' error (Red Hat Bugzilla).

When exploited, this vulnerability allows a remote attacker to cause a denial of service condition in the MariaDB server. The attack requires no user interaction or special privileges, making it particularly concerning for exposed database servers (Red Hat Security).

The vulnerability has been fixed in MariaDB versions 10.3.36, 10.4.26, 10.5.17, 10.6.9, 10.7.5, and 10.8.4. Users are advised to upgrade to these or later versions. Red Hat has released security updates for affected versions in RHEL 8 and 9 through multiple security advisories (Red Hat Errata).