Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-99xj-17z4-1qhe

Summary

openssl-src heap memory corruption with RSA private key operation
The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. SSL/TLS servers or other servers using 2048 bit RSA private keys running on machines supporting AVX512IFMA instructions of the X86_64 architecture are affected by this issue.

Aliases

alias	CVE-2022-2274

alias	GHSA-735f-pg76-fxc4

Fixed_packages

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=riscv64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=loongarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armhf&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armhf&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=armv7&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=armv7&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=riscv64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86_64&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.17&reponame=main

url	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:deb/debian/openssl@0?distro=trixie
purl	pkg:deb/debian/openssl@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.0.4-2?distro=trixie
purl	pkg:deb/debian/openssl@3.0.4-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.4-2%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

Affected_packages

url pkg:cargo/openssl-src@300.0.8

purl pkg:cargo/openssl-src@300.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-99xj-17z4-1qhe

resource_url http://public2.vulnerablecode.io/packages/pkg:cargo/openssl-src@300.0.8

url pkg:conan/openssl@3.0.4

purl pkg:conan/openssl@3.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-99xj-17z4-1qhe

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/openssl@3.0.4

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2274.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2274.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2274

reference_id

reference_type

scores

value	0.439
scoring_system	epss
scoring_elements	0.97532
published_at	2026-04-13T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97514
published_at	2026-04-02T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97531
published_at	2026-04-12T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97529
published_at	2026-04-11T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97526
published_at	2026-04-09T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97525
published_at	2026-04-08T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97519
published_at	2026-04-07T12:55:00Z

value	0.439
scoring_system	epss
scoring_elements	0.97517
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2274

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/openssl/openssl/issues/18625

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/openssl/openssl/issues/18625

reference_url

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=4d8a88c134df634ba610ff8db1eb8478ac5fd345

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=4d8a88c134df634ba610ff8db1eb8478ac5fd345

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-2274

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-2274

reference_url

https://rustsec.org/advisories/RUSTSEC-2022-0033.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://rustsec.org/advisories/RUSTSEC-2022-0033.html

reference_url

https://security.netapp.com/advisory/ntap-20220715-0010

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20220715-0010

reference_url	https://security.netapp.com/advisory/ntap-20220715-0010/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20220715-0010/

reference_url

https://www.openssl.org/news/secadv/20220705.txt

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.openssl.org/news/secadv/20220705.txt

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1013441
reference_id	1013441
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1013441

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2102943
reference_id	2102943
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2102943

reference_url

https://github.com/advisories/GHSA-735f-pg76-fxc4

reference_id

GHSA-735f-pg76-fxc4

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-735f-pg76-fxc4

Weaknesses

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

cwe_id	122
name	Heap-based Buffer Overflow
description	A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 8.1 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-99xj-17z4-1qhe

Vulnerability Instance