CVE-2022-3638 — Vulnetix

CVE-2022-3638 PUBLISHED

A vulnerability was found in Nginx and classified as problematic. This issue affects some unknown processing of the file ngx_resolver.c of the component IPv4 Off Handler. The manipulation leads to memory leak. The attack may be initiated remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-211937 was assigned to this vulnerability.

EPSS 0.95% · 35.2th percentile

Risk Scores

EPSS Score

0.95%

35.2th percentile

Timeline

Oct 22, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Oct 24, 2022 EPSS Score
Oct 25, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Oct 27, 2022 EPSS Score
Oct 28, 2022 EPSS Score
Oct 29, 2022 EPSS Score
Oct 30, 2022 EPSS Score
Oct 31, 2022 EPSS Score
Nov 1, 2022 EPSS Score
Nov 2, 2022 EPSS Score

References

https://nvd.nist.gov/vuln/detail/CVE-2022-3638 advisory
https://github.com/nginx/nginx/commit/14341ce2377d38a268261e0fec65b6915ae6e95e url
https://vuldb.com/?id.211937 url
http://hg.nginx.org/nginx/rev/0422365794f7 url

Open in Interactive Console →