AZL-9051 — Vulnetix

AZL-9051 PUBLISHED CVSS 7.5 HIGH

CVE-2022-0778 affecting package openssl for versions less than 1.1.1k-12

Risk Scores

CVSS 3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Azure Linux:2	openssl	0, 0

Exploit Intelligence

jeongjunsoo/CVE-2022-0778 (github-poc-repo)
jeongjunsoo/CVE-2022-0778 (github-poc)
Trinadh465/openssl-1.1.1g_CVE-2022-0778 (github-poc)
Proof of concept for CVE-2022-0778 in P12 and PEM format (github-poc)
jkakavas/CVE-2022-0778-POC (github-poc)
yywing/cve-2022-0778 (github-poc)
Proof of concept for CVE-2022-0778, which triggers an infinite loop in parsing X.509 certificates due to a bug in BN_mod_sqrt (github-poc)
Rapport_149185019.html (github-poc)
TestCommand.yaml (github-poc)
macos_v2_generated.go (github-poc)

…and 2 more exploits

Timeline

Mar 15, 2022 CVE Published
Apr 21, 2026 CVE Updated

References

https://nvd.nist.gov/vuln/detail/CVE-2022-0778 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›