Published: 21/09/2022 Updated: 08/08/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

In Erlang/OTP prior to 23.3.4.15, 24.x prior to 24.3.4.2, and 25.x prior to 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS.

Vulnerable Product	Search on Vulmon	Subscribe to Product
erlang erlang\\/otp

Synopsis Moderate: Red Hat OpenStack Platform 1624 (erlang) security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for erlang is now available for Red Hat OpenStack Platform 1624(Train) on Red Hat En ...

Debian Bug report logs - #1024632 erlang: CVE-2022-37026 Client Authentication Bypass Package: erlang; Maintainer for erlang is Debian Erlang Packagers <pkg-erlang-devel@listsaliothdebianorg>; Source for erlang is src:erlang (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Tue, 22 Nov 2022 ...

NVD-CWE-noinfo https://github.com/erlang/otp/compare/OTP-23.3.4.14...OTP-23.3.4.15 https://erlangforums.com/c/erlang-news-announcements/91 https://erlangforums.com/t/otp-25-1-released/1854 https://lists.debian.org/debian-lts-announce/2023/07/msg00012.html https://access.redhat.com/errata/RHSA-2022:8857 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-37026

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect