Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

CVE-2022-3602 vulnerabilities and exploits

(subscribe to this query)

7.5
CVE-2022-3602
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to...
Openssl OpensslFedoraproject Fedora 36Fedoraproject Fedora 37Netapp Clustered Data Ontap -Fedoraproject Fedora 26Fedoraproject Fedora 27Nodejs Node.js 19.0.0Nodejs Node.js 18.12.0Nodejs Node.js
7.5
CVE-2022-3786
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue...
Openssl OpensslFedoraproject Fedora 36Fedoraproject Fedora 37Nodejs Node.js 19.0.0Nodejs Node.js 18.12.0Nodejs Node.js
7.5
CVE-2022-3358
OpenSSL supports creating a custom cipher via the legacy EVP_CIPHER_meth_new() function and associated function calls. This function was deprecated in OpenSSL 3.0 and application authors are instead encouraged to use the new provider mechanism in order to implement custom...
Openssl Openssl
9.6
CVE-2022-41924
A vulnerability identified in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon `tailscaled`, which can then be used to remotely execute code. In the Tailscale Windows client, the local API was bound to a local TCP socket, and...
Tailscale Tailscale
7.5
CVE−2022-3602
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to...
Openssl OpensslFedoraproject Fedora 36Fedoraproject Fedora 37Netapp Clustered Data Ontap -Fedoraproject Fedora 26Fedoraproject Fedora 27Nodejs Node.js 19.0.0Nodejs Node.js 18.12.0Nodejs Node.js
9.8
CVE-2022-37434
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable...
Zlib ZlibFedoraproject Fedora 35Fedoraproject Fedora 36Fedoraproject Fedora 37Debian Debian Linux 10.0Netapp Oncommand Workflow Automation -Netapp Storagegrid -Netapp Ontap Select Deploy Administration Utility -Netapp Hci -Netapp Active Iq Unified Manager -Netapp Hci Compute Node -Netapp Management Services For Element Software -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Apple MacosApple Iphone OsApple WatchosApple Ipados
9.1
CVSSv3
CVE-2022-1586
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was...
Pcre Pcre2Fedoraproject Fedora 35Fedoraproject Fedora 36Redhat Enterprise Linux 8.0Redhat Enterprise Linux 9.0Netapp Ontap Select Deploy Administration Utility -Netapp Solidfire -Netapp Hci Management Node -Netapp Active Iq Unified Manager -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H410s Firmware -Netapp H410c Firmware -
9.1
CVSSv3
CVE-2022-1587
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers....
Pcre Pcre2Redhat Enterprise Linux 9.0Fedoraproject Fedora 35Fedoraproject Fedora 36Netapp Ontap Select Deploy Administration Utility -Netapp Solidfire -Netapp Hci Management Node -Netapp Active Iq Unified Manager -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H410s Firmware -Netapp H410c Firmware -
4.7
CVSSv3
CVE-2013-4235
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees...
Debian Shadow -Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Fedoraproject Fedora 17Fedoraproject Fedora 16Redhat Enterprise Linux 6.0Redhat Enterprise Linux 5
7.8
CVSSv3
CVE-2020-16156
CPAN 2.28 allows Signature Verification Bypass....
Perl Comprehensive Perl Archive Network 2.28Fedoraproject Fedora 34Fedoraproject Fedora 35
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-45441arbitrary CVE-2022-31254CVE-2023-0719CVE-2023-25136CVE-2023-0744CVE-2022-0847unspecifiedspoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook