Lucene search

CVE-2022-4492

🗓️ 23 Feb 2023 20:12:15Reported by redhatType

Undertow client not checking server identity in https connection

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 41
Vulnrichment	CVE-2022-4492	23 Feb 202300:00	–	vulnrichment
Github Security Blog	Undertow client not checking server identity presented by server certificate in https connections	23 Feb 202321:30	–	github
RedHat Linux	Moderate: Red Hat Security Advisory: Migration Toolkit for Runtimes security update	27 Jun 202311:34	–	redhat
RedHat Linux	Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.3 security update	10 May 202311:59	–	redhat
RedHat Linux	Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.3 for OpenShift image security update	10 May 202314:30	–	redhat
RedHat Linux	Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.3 security update on RHEL 8	10 May 202311:25	–	redhat
RedHat Linux	Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.3 security update on RHEL 7	10 May 202311:25	–	redhat
RedHat Linux	Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.3 security update on RHEL 9	10 May 202311:25	–	redhat
RedHat Linux	Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.10 on RHEL 8 security update	29 Mar 202311:44	–	redhat
RedHat Linux	Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.10 security update	29 Mar 202311:45	–	redhat

Nvd

Vulners

Node

redhat build_of_quarkusMatch-

redhat integration_camel_for_spring_bootMatch-

redhat integration_camel_kMatch-

redhat integration_service_registryMatch-

redhat jboss_enterprise_application_platformMatch7.0.0

redhat jboss_fuseMatch7.0.0

redhat migration_toolkit_for_applicationsMatch6.0

redhat migration_toolkit_for_runtimesMatch-

redhat single_sign-onMatch7.0

redhat undertowMatch2.7.0

[
  {
    "vendor": "n/a",
    "product": "undertow",
    "versions": [
      {
        "version": "2.7",
        "status": "affected"
      }
    ]
  }
]

Source	Link
security	www.security.netapp.com/advisory/ntap-20230324-0002/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/security/cve/CVE-2022-4492

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Feb 2023 20:15Current

7.3High risk

Vulners AI Score7.3

CVSS37.5

EPSS0.00121

SSVC

CWE-918