CVE-2022-3786

Description from NVD

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue certificate verification despite failure to construct a path to a trusted issuer. An attacker can craft a malicious email address in a certificate to overflow an arbitrary number of bytes containing the `.' character (decimal 46) on the stack. This buffer overflow could result in a crash (causing a denial of service). In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

Information Acquisition Date:2022-11-08T14:58Z
CVSS 2.0: 0.0 None CVSS 3.x: 7.5 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

NVD References

 https://www.openssl.org/news/secadv/20221101.txt
     source:CONFIRM
     tags:Vendor Advisory    
 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c42165b5706e42f67ef8ef4c351a9a4c5d21639a
     source:MISC
     tags:

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: OpenSSL(5 tweets)

List of frequently cited URLs

URLNum of Times Referred to
https://lnkd88
http://cyberiqs.com/latestnews60
https://cvetrends.com50
https://lists.astaro.com/ASGV9-IPS-rules.html#012
https://nakedsecurity.sophos.com/12
https://www.snort.org/downloads7
https://www.splunk.com/en_us/blog/security/nothing-puny-abo...7
https://blog.cloudflare.com/cloudflare-is-not-affected-by-t...7
https://thehackernews.com/2022/11/just-in-openssl-releases-...6
https://news.ycombinator.com/item?id=334232716
https://www.rapid7.com/blog/post/2022/11/01/cve-2022-3786-a...5
https://blogs.vmware.com/security/2022/11/vmware-response-t...5
https://access.redhat.com/security/vulnerabilities/RHSB-202...5
https://security.sios.com/vulnerability/openssl-security-vu...5
https://rssfeeds.cloudsite.builders/2022/11/02/cve-2022-360...5
https://b.hatena.ne.jp/entry/s/www.openssl.org/blog/blog/20...4
https://securityboulevard.com/2022/11/what-the-openssl-vuln...4
https://msrc-blog.microsoft.com/2022/11/02/microsoft-guidan...4
https://www.helpnetsecurity.com/2022/11/01/high-severity-op...4
https://security-tracker.debian.org/tracker/CVE-2022-36024
https://unit42.paloaltonetworks.com/openssl-vulnerabilities4
http://ow.ly/zvz750LsE0K3
https://xtra.li/3heHVQc3
https://cve.report/CVE-2022-37863
https://github.com/openssl/openssl/commit/c42165b5706e42f67...3
https://sysdig.com/blog/stop-openssl-vulnerability-cve-37863
https://ubuntu.com/security/CVE-2022-36023
http://openssl.org3
https://opsmtrs.com/3fTgB6p3
https://twitter.com/TheHackersNews/status/15874811937205985333
https://www.cve.org/CVERecord?id=CVE-2022-37863
https://isc.sans.edu/diary/rss/292083
http://Checkmarx.com3
https://www.ipa.go.jp/security/ciadr/vul/alert20221102.html3
https://go.trellix.com/3UbKHnk3
https://mta.openssl.org/pipermail/openssl-announce/2022-Nov...3
https://news.google.com/__i/rss/rd/articles/CBMicGh0dHBzOi8...3
https://www.openssl.org/news/cl30.txt3
https://tweetedtimes.com/seclabor?s=tnp3
https://www.jpcert.or.jp/at/2022/at220030.html3
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-...3
https://blog.checkpoint.com/2022/11/01/openssl-vulnerabilit...3
https://www.bleepingcomputer.com/news/security/openssl-fixe...3

Information from Twitter

User URL Info Source Date
RSaGa2_mimic https://www.openssl.org/blog/blog/2022/11/01/email-address-... Source RSaGa2_mimic     1627631651990958080 2023/02/20
sebaenetworks https://tinyurl.com/2mj6ohll Source sebaenetworks    1628104793452425216 2023/02/22
sebaenetworks https://twitter.com/sebaenetworks/status/162810479345242521... Source sebaenetworks    1628104793452425216 2023/02/22
sebaenetworks https://tinyurl.com/2gcxca88 Source sebaenetworks    1628121147068846088 2023/02/22
sebaenetworks https://twitter.com/sebaenetworks/status/162812114706884608... Source sebaenetworks    1628121147068846088 2023/02/22
CyberIQs_ http://cyberiqs.com/latestnews Source CyberIQs_        1640894905701605382 2023/03/29
CyberIQs_ http://cyberiqs.com/latestnews Source CyberIQs_        1642315856037261313 2023/04/02
CyberIQs_ http://cyberiqs.com/latestnews Source CyberIQs_        1644271418660593665 2023/04/07

List of frequently cited URLs

URLNum of Times Referred to
lnkd88
cyberiqs.com60
cvetrends.com50
lists.astaro.com12
nakedsecurity.sophos.com12
www.snort.org7
www.splunk.com7
blog.cloudflare.com7
thehackernews.com6
news.ycombinator.com6
www.rapid7.com5
blogs.vmware.com5
access.redhat.com5
security.sios.com5
rssfeeds.cloudsite.builders5
b.hatena.ne.jp4
securityboulevard.com4
msrc-blog.microsoft.com4
www.helpnetsecurity.com4
security-tracker.debian.org4
unit42.paloaltonetworks.com4
ow.ly3
xtra.li3
cve.report3
github.com3
sysdig.com3
ubuntu.com3
openssl.org3
opsmtrs.com3
twitter.com3
www.cve.org3
isc.sans.edu3
Checkmarx.com3
www.ipa.go.jp3
go.trellix.com3
mta.openssl.org3
news.google.com3
www.openssl.org3
tweetedtimes.com3
www.jpcert.or.jp3
www.trustwave.com3
blog.checkpoint.com3
www.bleepingcomputer.com3

Information from Twitter

User URL Info Source
RSaGa2_mimic openssl.org Show Tweet
sebaenetworks tinyurl.com Show Tweet
sebaenetworks twitter.com Show Tweet
sebaenetworks tinyurl.com Show Tweet
sebaenetworks twitter.com Show Tweet
CyberIQs_ cyberiqs.com Show Tweet
CyberIQs_ cyberiqs.com Show Tweet
CyberIQs_ cyberiqs.com Show Tweet
GitHub Search Results: Up to 10
NameURL
NCSC-NL/OpenSSL-2022 https://github.com/NCSC-NL/OpenSSL-2022
rbowes-r7/cve-2022-3602-and-cve-2022-3786-openssl-poc https://github.com/rbowes-r7/cve-2022-3602-and-cve-2022-3786-openssl-poc
cybersecurityworks553/CVE-2022-3602-and-CVE-2022-3786 https://github.com/cybersecurityworks553/CVE-2022-3602-and-CVE-2022-3786
hi-artem/find-spooky-prismacloud https://github.com/hi-artem/find-spooky-prismacloud
micr0sh0ft/certscare-openssl3-exploit https://github.com/micr0sh0ft/certscare-openssl3-exploit
Qualys/osslscanwin https://github.com/Qualys/osslscanwin
GitHub Search Results: Up to 10
NameURL
NCSC-NL/OpenSSL-2022 github.com
rbowes-r7/cve-2022-3602-and-cve-2022-3786-openssl-poc github.com
cybersecurityworks553/CVE-2022-3602-and-CVE-2022-3786 github.com
hi-artem/find-spooky-prismacloud github.com
micr0sh0ft/certscare-openssl3-exploit github.com
Qualys/osslscanwin github.com
2023/04/07 Score : 0
Added Har-sia Database : 2022/11/02
Last Modified : 2023/04/07
Highest Scored Date : 2022/11/02
Highest Score : 500