Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2022-2097

🗓️ 05 Jul 2022 11:08:15Reported by opensslType 
cve
 cve🔗 web.nvd.nist.gov📰️ 22 Media mentions👁 415 Views

CVE-2022-2097: AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation may reveal preexisting data due to incomplete encryption

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: OpenSSL vulnerability affects App Connect professional v7.5.4.
18 Jul 202204:57
ibm
IBM Security Bulletins		Security Bulletin: Vulnerability in SANNav Software used by IBM b-type SAN directors and switches.
22 Aug 202218:04
ibm
IBM Security Bulletins		Security Bulletin: IBM Sterling Connect:Direct for UNIX container is vulnerable to obtain sensitive information due to OpenSSL (CVE-2022-2097)
15 Sep 202210:27
ibm
IBM Security Bulletins		Security Bulletin: IBM App Connect Enterprise Certified Container operands may be vulnerable to loss of confidentiality due to CVE-2022-2097
7 Nov 202212:03
ibm
IBM Security Bulletins		Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to information exposure in OpenSSL (CVE-2022-2097)
1 Feb 202316:05
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest (CVE-2022-2068, CVE-2022-2097)
1 Feb 202305:38
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Tivoli Netcool System Service Monitors/Application Service Monitors
30 Dec 202212:37
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in OpenSSL affects IBM Rational ClearCase (CVE-2022-2097, CVE-2022-2068)
31 Jan 202314:04
ibm
IBM Security Bulletins		Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to IBM WebSphere Application Server Liberty and OpenSSL (CVE-2022-2068, CVE-2022-2097, CVE-2022-22475)
18 Aug 202207:27
ibm
IBM Security Bulletins		Security Bulletin: AIX is vulnerable to arbitrary command execution (CVE-2022-1292 and CVE-2022-2068) or an attacker may obtain sensitive information (CVE-2022-2097) due to OpenSSL
19 Aug 202216:02
ibm
Rows per page
Nvd
Vulners
Vulnrichment
Node
opensslopensslRange1.1.11.1.1q
OR
opensslopensslRange3.0.03.0.5
Node
fedoraprojectfedoraMatch35
OR
fedoraprojectfedoraMatch36
Node
netappactive_iq_unified_managerMatch-vmware_vsphere
OR
netappclustered_data_ontap_antivirus_connectorMatch-
Node
netapph300s_firmwareMatch-
AND
netapph300s_firmwareMatch-
Node
netapph500s_firmwareMatch-
AND
netapph500sMatch-
Node
netapph700s_firmwareMatch-
AND
netapph700sMatch-
Node
netapph410s_firmwareMatch-
AND
netapph410sMatch-
Node
netapph410c_firmwareMatch-
AND
netapph410cMatch-
Node
siemenssinec_insRange<1.0
OR
siemenssinec_insMatch1.0-
OR
siemenssinec_insMatch1.0sp1
OR
siemenssinec_insMatch1.0sp2
Node
debiandebian_linuxMatch10.0
OR
debiandebian_linuxMatch11.0
[
  {
    "vendor": "OpenSSL",
    "product": "OpenSSL",
    "versions": [
      {
        "version": "Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4)",
        "status": "affected"
      },
      {
        "version": "Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p)",
        "status": "affected"
      }
    ]
  }
]
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
05 Jul 2022 11:15Current
7.6High risk
Vulners AI Score7.6
CVSS25
CVSS35.3
EPSS0.00553
SSVC
CWE-327
cve-2022-2097aes ocb32-bit x86opensslsecurity vulnerabilityencryptiondata privacy
415
.json
Report