Lucene search
CVE-2022-3602
🗓️ 01 Nov 2022 18:10:15Reported by opensslType 
cve🔗 web.nvd.nist.gov📰️ 154 Media mentions👁 958 Views🌐 WEB
A buffer overrun in X.509 certificate verification allows for potential remote code execution
Show more
| Reporter | Title | Published | Views | Family All 176 |
|---|---|---|---|---|
 | X.509 Email Address 4-byte Buffer Overflow | 1 Nov 202212:00 | – | rustsec |
 | CVE-2022-3602 | 1 Nov 202218:15 | – | osv |
| CGA-2492-C4JV-55C4 | 6 Jun 202412:20 | – | osv |
| BIT-node-2022-3602 | 6 Mar 202411:02 | – | osv |
| CGA-9G54-69RW-C9J6 | 25 Sep 202405:19 | – | osv |
| BIT-NODE-MIN-2022-3602 | 16 Dec 202414:01 | – | osv |
| X.509 Email Address 4-byte Buffer Overflow | 1 Nov 202212:00 | – | osv |
| CGA-HGG8-H6VF-32C8 | 6 Jun 202412:27 | – | osv |
| X.509 Email Address 4-byte Buffer Overflow | 1 Nov 202217:45 | – | osv |
| OPENSUSE-SU-2024:12480-1 python310-cryptography-vectors-38.0.3-1.1 on GA media | 15 Jun 202400:00 | – | osv |
10
Node
Node
Node
[
{
"vendor": "OpenSSL",
"product": "OpenSSL",
"versions": [
{
"version": "Fixed in OpenSSL 3.0.7 (Affected 3.0.0,3.0.1,3.0.2,3.0.3,3.0.4,3.0.5,3.0.6)",
"status": "affected"
}
]
}
]10
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| nameConstraints | query param | /CVE-2022-3602 | CVE-2022-3602 is a vulnerability in OpenSSL that allows for buffer overflow through improper handling of punycode while processing X.509 certificates. | CWE-787 |
| otherName | query param | /CVE-2022-3602 | CVE-2022-3602 is a vulnerability in OpenSSL that allows for buffer overflow through improper handling of punycode while processing X.509 certificates. | CWE-787 |
10
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo01 Nov 2022 18:15Current
8.2High risk
Vulners AI Score8.2
CVSS37.5
EPSS0.85032