VDB
BIT-node-2022-3786
BIT-node-2022-3786
PUBLISHED
CVSS 7.5 HIGH
X.509 Email Address Variable Length Buffer Overflow
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | node | 18.0.0, 18.12.0, 19.0.0 |
Exploit Intelligence
- Finding CVE-2022-3786 (openssl) with Mayhem (github-poc)
- risk_calculator.cpp (github-poc)
- cve_db.json (github-poc)
- TestCommand.yaml (github-poc)
- advisories.html (github-poc)
Timeline
- Mar 6, 2024 CVE Published
- Apr 17, 2026 CVE Updated
References
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c42165b5706e42f67ef8ef4c351a9a4c5d21639a url
- https://www.openssl.org/news/secadv/20221101.txt url
- https://nvd.nist.gov/vuln/detail/CVE-2022-3786 url
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00789.html url
- https://www.kb.cert.org/vuls/id/794340 url
- https://cert-portal.siemens.com/productcert/html/ssa-408105.html url