Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Buffer Overflow

🗓️ 01 Nov 2022 17:29:15Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode🔗 sca.analysiscenter.veracode.com👁 55 Views

OpenSSL vulnerability to buffer overflow in X.509 certificate name constraint checking

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for Febuary 2023
10 Mar 202318:29
ibm
IBM Security Bulletins		Security Bulletin: API Connect is impacted by a vulnerability in OpenSSL (CVE-2022-3602, CVE-2022-3786)
8 Dec 202220:16
ibm
IBM Security Bulletins		Security Bulletin: IBM Aspera faspio Gateway affected by OpenSSL vulnerabilities (CVE-2022-3602, CVE-2022-3786)
2 Feb 202316:40
ibm
IBM Security Bulletins		Security Bulletin: IBM Security Verify Privilege On-Premise is affected by multiple security vulnerabilities
5 Oct 202308:12
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM® Db2® Big SQL.
4 Jan 202512:32
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in OpenSSL may affect IBM Spectrum Protect Plus (CVE-2022-3602, CVE-2022-3786)
30 May 202317:46
ibm
IBM Security Bulletins		Security Bulletin: OpenSSL vulnerabilities might impact IBM Cloud Application Business Insights - CVE-2022-3602 & CVE-2022-3786
30 Dec 202215:09
ibm
IBM Security Bulletins		Security Bulletin: IBM Observability with Instana (OnPrem) affected by OpenSSL vulnerabilities.
7 Mar 202309:44
ibm
IBM Security Bulletins		Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities
12 Jan 202317:22
ibm
IBM Security Bulletins		Security Bulletin: IBM Planning Analytics Local - Planning Analytics Workspace is affected by vulnerabilities in multiple Open Source Software (OSS) components
7 May 202419:21
ibm
Rows per page
Vulners
Node
openssl3openssl3Range3.0.2-r03.0.5-r1os
AND
openssl3openssl3Match3.0.5-r0os
AND
openssl3openssl3Match3.0.3-r0os
AND
openssl3openssl3Match3.0.2-r0os
AND
alpinelinuxalpine_linuxMatch3.16
OR
opensslopensslRange3.0.2-r03.0.5-r3os
AND
alpinelinuxalpine_linuxMatch3.17
OR
opensslopensslMatch3.0.0-r2os
AND
alpinelinuxalpine_linuxMatch3.15
OR
openssl3openssl3Range3.0.0-r43.0.5-r0os
AND
alpinelinuxalpine_linuxMatchedge
OR
latest-stablelatest-stableRange3.0.0-r43.0.5-r1os
AND
alpinelinuxalpine_linuxMatchlatest-stable
OR
opensslopensslMatch1.1.1e-r0os
AND
opensslopensslMatch1.1.1q-r0os
AND
opensslopensslMatch3.0.0-r2os
AND
opensslopensslMatch1.1.1n-r0os
AND
opensslopensslMatch1.1.1o-r0os
AND
opensslopensslMatch3.0.5-r2os
AND
opensslopensslMatch3.0.5-r3os
AND
opensslopensslMatch1.1.1m-r2os
AND
opensslopensslMatch1.1.1d-r4os
AND
opensslopensslMatch1.1.1g-r0os
AND
opensslopensslMatch1.1.1p-r0os
AND
opensslopensslMatch1.1.1j-r0os
AND
opensslopensslMatch1.1.1k-r0os
AND
opensslopensslMatch1.1.1l-r0os
AND
opensslopensslMatch1.1.1m-r1os
AND
opensslopensslMatch1.1.1d-r5os
AND
opensslopensslMatch1.1.1k-r1os
AND
opensslopensslMatch3.0.0-r0os
AND
opensslopensslMatch3.0.5-r1os
AND
opensslopensslMatch1.1.1l-r5os
AND
opensslopensslMatch1.1.1f-r0os
AND
opensslopensslMatch1.1.1l-r7os
AND
opensslopensslMatch1.1.1m-r3os
AND
alpinelinuxalpine_linuxMatchedge
OR
nodejsnodejsMatch16.16.0-r0os
AND
nodejsnodejsMatch12.16.2-r0os
AND
nodejsnodejsMatch14.16.0-r0os
AND
nodejsnodejsMatch16.17.0-r0os
AND
nodejsnodejsMatch14.16.0-r1os
AND
nodejsnodejsMatch16.18.0-r1os
AND
nodejsnodejsMatch14.17.1-r0os
AND
nodejsnodejsMatch16.15.0-r0os
AND
nodejsnodejsMatch16.13.1-r0os
AND
nodejsnodejsMatch16.14.2-r1os
AND
nodejsnodejsMatch12.15.0-r1os
AND
nodejsnodejsMatch14.17.3-r0os
AND
nodejsnodejsMatch14.17.2-r0os
AND
nodejsnodejsMatch14.17.0-r0os
AND
nodejsnodejsMatch16.13.1-r1os
AND
nodejsnodejsMatch16.16.0-r1os
AND
nodejsnodejsMatch14.18.0-r0os
AND
nodejsnodejsMatch16.15.0-r1os
AND
nodejsnodejsMatch14.17.6-r0os
AND
nodejsnodejsMatch16.13.2-r0os
AND
nodejsnodejsMatch16.14.2-r0os
AND
nodejsnodejsMatch16.13.2-r1os
AND
nodejsnodejsMatch14.18.1-r1os
AND
nodejsnodejsMatch14.17.6-r1os
AND
nodejsnodejsMatch14.17.4-r0os
AND
nodejsnodejsMatch16.17.1-r0os
AND
nodejsnodejsMatch14.17.5-r0os
AND
nodejsnodejsMatch14.16.1-r2os
AND
nodejsnodejsMatch12.17.0-r0os
AND
alpinelinuxalpine_linuxMatchedge
OR
opensslopensslMatch1.1.1h-1debian
AND
debiandebian_linuxMatch999
OR
nodejsnodejsMatch16.18.0-r1os
AND
alpinelinuxalpine_linuxMatch3.17
OR
develdevelMatch1.1.1f-1ubuntu3debian
AND
develdevelMatch1.1.1f-1ubuntu4debian
AND
develdevelMatch1.1.1j-1ubuntu1debian
AND
debiandebian_linux
OR
openssl3openssl3Match3.0.0-r3os
AND
openssl3openssl3Match3.0.5-r1os
AND
openssl3openssl3Match3.0.3-r0os
AND
openssl3openssl3Match3.0.0-r4os
AND
openssl3openssl3Match3.0.5-r0os
AND
openssl3openssl3Match3.0.2-r0os
AND
alpinelinuxalpine_linuxMatch3.15
OR
openssl3openssl3Range3.0.0__3.el8.13.0.1__41.el8.1
OR
openssl3-developenssl3-develRange3.0.0__3.el8.13.0.1__41.el8.1
OR
cryptography.iocryptographyRange37.0.038.0.2os
SourceLink
githubwww.github.com/openssl/openssl/commit/fe3b639dc19b325846f4f6801f2f4604f56e3de3
opensslwww.openssl.org/news/secadv/20221101.txt
toolswww.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-W9sdCc2a
githubwww.github.com/pblumo/openssl-vuln-nov-2022/blob/main/list.csv
mtawww.mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
opensslwww.openssl.org/blog/blog/2022/11/01/email-address-overflows/
akamaiwww.akamai.com/blog/security-research/openssl-vulnerability-how-to-effectively-prepare
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/DWP23EZYOBDJQP7HP4YU7W2ABU2YDITS/
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/63YRPWPUSX3MBHNPIEJZDKQT6YA7UF6S/
mtawww.mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
09 Aug 2023 14:46Current
8.2High risk
Vulners AI Score8.2
CVSS 3.17.5
EPSS0.89804
opensslvulnerabilitybuffer overflowx.509 certificatedenial of serviceremote code executionsoftware
55