CVE-2022-3786
Description
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue certificate verification despite failure to construct a path to a trusted issuer. An attacker can craft a malicious email address in a certificate to overflow an arbitrary number of bytes containing the . character (decimal 46) on the stack. This buffer overflow could result in a crash (causing a denial of service). In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
20.63
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL (x64) 3.0.7 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL 3.0.7 | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 14 (x64) (14.21.1) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 14 (14.21.1) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 16 (x64) (16.18.1) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 16 (16.18.1) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 18 (18.17.0) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 18 (x64) (18.17.0) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786,CVE-2022-43548 are fixed in Node.js 19.0.1 | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786 are fixed in Nessus Agent (10.2.1) | Windows |
| Vulnerabilities CVE-2022-3602,CVE-2022-3786 are fixed in Nessus Agent (x64) (10.2.1) | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL (MSI)(x64) 3.0.7 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL 3.0.3 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL (64-bit) 3.0.3 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL (64-bit) 3.0.7 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL (MSI)(x64) 3.0.3 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL (MSI)(x86) 3.0.3 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL (MSI)(x86) 3.0.7 | Windows |
| Vulnerabilities CVE-2022-43680,CVE-2022-3602,CVE-2022-3786 are fixed in Nessus Agent (10.4.1) | Windows |
| Vulnerabilities CVE-2022-43680,CVE-2022-3602,CVE-2022-3786 are fixed in Nessus Agent (x64) (10.4.1) | Windows |
| Vulnerabilities CVE-2022-43680,CVE-2022-3602,CVE-2022-3786 are fixed in Nessus Agent (x64) (10.3.2) | Windows |
| Vulnerabilities CVE-2022-43680,CVE-2022-3602,CVE-2022-3786 are fixed in Nessus Agent (10.3.2) | Windows |
| Vulnerabilities CVE-2022-43680,CVE-2022-3602,CVE-2022-3786 are fixed in Tenable Nessus 10.4.1 | Windows |
| Vulnerabilities CVE-2022-43680,CVE-2022-3602,CVE-2022-3786 are fixed in Tenable Nessus 10.3.2 | Windows |
| Multiple Vulnerabilities are affected in IBM MQ 9.3 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL Light 3.0.3 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL Light 3.0.7 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL Light (x64) 3.0.3 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL Light (x64) 3.0.7 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL Library 3.0.3 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL Library 3.0.7 | Windows |
| Vulnerabilities CVE-2022-1473,CVE-2022-1434,CVE-2022-1343,CVE-2022-1292,CVE-2022-3786 are fixed in OpenSSL Library x86 3.0.3 | Windows |
| Vulnerabilities CVE-2022-3786,CVE-2022-3602 are fixed in OpenSSL Library x86 3.0.7 | Windows |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-5710-1) libssl3_3.0.5-2ubuntu1_i386.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-5710-1) libssl3_3.0.5-2ubuntu1_amd64.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-5710-1) libssl3_3.0.2-0ubuntu1.6_i386.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-5710-1) libssl3_3.0.2-0ubuntu1.6_amd64.deb | Linux |
| Openssl update (ELSA-2022-7288) openssl-3.0.1-43.0.1.el9_0.x86_64.rpm | Linux |
| Openssl-devel update (ELSA-2022-7288) openssl-devel-3.0.1-43.0.1.el9_0.i686.rpm | Linux |
| Openssl-devel update (ELSA-2022-7288) openssl-devel-3.0.1-43.0.1.el9_0.x86_64.rpm | Linux |
| Openssl-libs update (ELSA-2022-7288) openssl-libs-3.0.1-43.0.1.el9_0.i686.rpm | Linux |
| Openssl-libs update (ELSA-2022-7288) openssl-libs-3.0.1-43.0.1.el9_0.x86_64.rpm | Linux |
| Openssl-perl update (ELSA-2022-7288) openssl-perl-3.0.1-43.0.1.el9_0.x86_64.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-3.0.1-43.el9_0.x86_64.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-debugsource-3.0.1-43.el9_0.i686.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-debugsource-3.0.1-43.el9_0.x86_64.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-devel-3.0.1-43.el9_0.i686.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-devel-3.0.1-43.el9_0.x86_64.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-libs-3.0.1-43.el9_0.i686.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-libs-3.0.1-43.el9_0.x86_64.rpm | Linux |
| (RHSA-2022:7288) openssl security update openssl-perl-3.0.1-43.el9_0.x86_64.rpm | Linux |
| Openssl-perl update (ELSA-2024-9333) openssl-perl-3.2.2-6.0.1.el9_5.x86_64.rpm | Linux |
| Openssl-libs update (ELSA-2024-9333) openssl-libs-3.2.2-6.0.1.el9_5.x86_64.rpm | Linux |
| Openssl-libs update (ELSA-2024-9333) openssl-libs-3.2.2-6.0.1.el9_5.i686.rpm | Linux |
| Openssl-fips-provider-so update (ELSA-2024-9333) openssl-fips-provider-so-3.0.7-6.0.1.el9_5.x86_64.rpm | Linux |
| Openssl-fips-provider update (ELSA-2024-9333) openssl-fips-provider-3.0.7-6.0.1.el9_5.x86_64.rpm | Linux |
| Openssl-fips-provider update (ELSA-2024-9333) openssl-fips-provider-3.0.7-6.0.1.el9_5.i686.rpm | Linux |
| Openssl-devel update (ELSA-2024-9333) openssl-devel-3.2.2-6.0.1.el9_5.x86_64.rpm | Linux |
| Openssl-devel update (ELSA-2024-9333) openssl-devel-3.2.2-6.0.1.el9_5.i686.rpm | Linux |
| Openssl update (ELSA-2024-9333) openssl-3.2.2-6.0.1.el9_5.x86_64.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) v8-devel-10.2.154.15-1.18.12.1.1.amzn2023.0.2.x86_64.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) nodejs-18.12.1-1.amzn2023.0.2.x86_64.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) nodejs-devel-18.12.1-1.amzn2023.0.2.x86_64.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) nodejs-docs-18.12.1-1.amzn2023.0.2.noarch.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) nodejs-full-i18n-18.12.1-1.amzn2023.0.2.x86_64.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) nodejs-libs-18.12.1-1.amzn2023.0.2.x86_64.rpm | Linux |
| nodejs Security Update (ALAS2023-2023-084) npm-8.19.2-1.18.12.1.1.amzn2023.0.2.x86_64.rpm | Linux |
| Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability (CVE-2022-3786) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-355449 | OpenSSL (3.6.1) |
| PATCH-329083 | Node.js 14 (x64) (14.21.3) |
| PATCH-329082 | Node.js 14 (14.21.3) |
| PATCH-331257 | Node.js 16 (x64) (16.20.1) |
| PATCH-331256 | Node.js 16 (16.20.1) |
| PATCH-331762 | Node.js 18 (18.17.0) |
| PATCH-331763 | Node.js 18 (x64) (18.17.0) |
| PATCH-319042 | Node.js 10 (10.24.1) |
| PATCH-337447 | Nessus Agent (10.6.1) |
| PATCH-337448 | Nessus Agent (x64) (10.6.1) |
| PATCH-355449 | OpenSSL (3.6.1) |
| PATCH-346981 | Nessus Agent (10.8.4) (Manual Upload Required) |
| PATCH-346982 | Nessus Agent (x64) (10.8.4) (Manual Upload Required) |
| PATCH-346982 | Nessus Agent (x64) (10.8.4) (Manual Upload Required) |
| PATCH-346981 | Nessus Agent (10.8.4) (Manual Upload Required) |
| PATCH-355451 | OpenSSL Light (3.6.1) |
| PATCH-355451 | OpenSSL Light (3.6.1) |
| PATCH-355452 | OpenSSL Light (x64) (3.6.1) |
| PATCH-355452 | OpenSSL Light (x64) (3.6.1) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234