CVE-2022-2274

CRITICAL

OpenSSL 3.0.4 - Remote Code Execution via RSA AVX512IFMA Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2022-2274. PoCs published by Malwareman007, DesmondSanctity, EkamSinghWalia.

AI-analyzed exploit summary This PoC demonstrates a vulnerability in OpenSSL by testing the SSL server handshake. It includes a certificate and RSA private key to simulate a server scenario, likely targeting a specific flaw in the handshake process.

Description

The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. SSL/TLS servers or other servers using 2048 bit RSA private keys running on machines supporting AVX512IFMA instructions of the X86_64 architecture are affected by this issue.

Exploits (3)

nomisec WORKING POC 16 stars
by Malwareman007 · poc
https://github.com/Malwareman007/CVE-2022-2274

This PoC demonstrates a vulnerability in OpenSSL by testing the SSL server handshake. It includes a certificate and RSA private key to simulate a server scenario, likely targeting a specific flaw in the handshake process.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: OpenSSL (version not specified)
No auth needed
Prerequisites: OpenSSL library · Compilation environment
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WRITEUP 1 stars
by DesmondSanctity · poc
https://github.com/DesmondSanctity/CVE-2022-2274

This repository provides a detailed writeup of CVE-2022-2274, a heap memory corruption vulnerability in OpenSSL 3.0.4 affecting RSA private key operations on X86_64 CPUs with AVX512IFMA support. It includes technical details, reproduction steps, and references to patches.

Classification
Writeup 100%
Attack Type
Rce | Dos | Info Leak
Complexity
Moderate
Reliability
Theoretical
Target: OpenSSL 3.0.4 (via openssl-src-rust crate)
No auth needed
Prerequisites: X86_64 CPU with AVX512IFMA support · OpenSSL 3.0.4 built with vulnerable configuration
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec SCANNER
by EkamSinghWalia · poc
https://github.com/EkamSinghWalia/OpenSSL-Vulnerability-Detection-Script

This repository contains a simple shell script that checks the OpenSSL version to determine if the system is vulnerable to CVE-2022-2274. It does not exploit the vulnerability but merely scans for its presence.

Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: OpenSSL versions 3.0.0 to 3.0.6
No auth needed
Prerequisites: OpenSSL installed on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_confirm
https://github.com/openssl/openssl/issues/18625
Vendor Advisory x_refsource_confirm
https://www.openssl.org/news/secadv/20220705.txt
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20220715-0010/

Scores

CVSS v3 9.8
EPSS 0.3969
EPSS Percentile 97.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (8)
crates.io/openssl-src 300.0.8 - 300.0.9crates.io
netapp/h300s_firmware
netapp/h410c_firmware
netapp/h410s_firmware
netapp/h500s_firmware
netapp/h700s_firmware
netapp/snapcenter
openssl/openssl 3.0.4
Published Jul 01, 2022
Tracked Since Feb 18, 2026