CVE-2022-2274

CRITICAL

Openssl < 300.0.9 - Out-of-Bounds Write

Title source: rule

Description

The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. SSL/TLS servers or other servers using 2048 bit RSA private keys running on machines supporting AVX512IFMA instructions of the X86_64 architecture are affected by this issue.

Exploits (3)

nomisec WORKING POC 16 stars

by Malwareman007 · poc

https://github.com/Malwareman007/CVE-2022-2274

View Code ZIP pw:eip

nomisec WRITEUP 1 stars

by DesmondSanctity · poc

https://github.com/DesmondSanctity/CVE-2022-2274

View Code ZIP pw:eip

nomisec SCANNER

by EkamSinghWalia · poc

https://github.com/EkamSinghWalia/OpenSSL-Vulnerability-Detection-Script

View Code ZIP pw:eip

References (4)

[Vendor Advisory] https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=4d8a88c134df634ba610ff8db1eb8478ac5fd345

[Exploit, Issue Tracking, Third Party Advisory] https://github.com/openssl/openssl/issues/18625

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20220715-0010/

[Vendor Advisory] https://www.openssl.org/news/secadv/20220705.txt

Scores

CVSS v3 9.8

EPSS 0.3969

EPSS Percentile 97.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (8)

crates.io/openssl-src 300.0.8 - 300.0.9crates.io

netapp/h300s_firmware

netapp/h410c_firmware

netapp/h410s_firmware

netapp/h500s_firmware

netapp/h700s_firmware

netapp/snapcenter

openssl/openssl 3.0.4

Published Jul 01, 2022

Tracked Since Feb 18, 2026