CVE-2022-1292

The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).
OS Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
opensslCNA
---
---
CVEADP
---
---
CISA-ADPADP
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
VendorProductVersion
opensslopenssl
1.0.2 ≤
𝑥
< 1.0.2ze
opensslopenssl
1.1.1 ≤
𝑥
< 1.1.1o
opensslopenssl
3.0.0 ≤
𝑥
< 3.0.3
debiandebian_linux
9.0
debiandebian_linux
10.0
debiandebian_linux
11.0
netappactive_iq_unified_manager
-
netappactive_iq_unified_manager
-
netappactive_iq_unified_manager
-
netappclustered_data_ontap
-
netappclustered_data_ontap_antivirus_connector
-
netapponcommand_insight
-
netapponcommand_workflow_automation
-
netappsantricity_smi-s_provider
-
netappsmi-s_provider
-
netappsnapcenter
-
netappsnapmanager
-
netappsolidfire\,_enterprise_sds_\&_hci_storage_node
-
netappsolidfire_\&_hci_management_node
-
netappa700s_firmware
-
netapph300s_firmware
-
netapph500s_firmware
-
netapph700s_firmware
-
netapph300e_firmware
-
netapph500e_firmware
-
netapph700e_firmware
-
netapph410s_firmware
-
netappaff_8300_firmware
-
netappfas_8300_firmware
-
netappaff_8700_firmware
-
netappfas_8700_firmware
-
netappaff_a400_firmware
-
netappfabric-attached_storage_a400_firmware
-
netappa250_firmware
-
netappaff_500f_firmware
-
netappfas_500f_firmware
-
oracleenterprise_manager_ops_center
12.4.0.0
oraclemysql_server
5.0.0 ≤
𝑥
≤ 5.7.38
oraclemysql_server
8.0.0 ≤
𝑥
≤ 8.0.29
oraclemysql_workbench
𝑥
≤ 8.0.29
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openssl
bullseye
1.1.1w-0+deb11u1
fixed
bullseye (security)
1.1.1w-0+deb11u2
fixed
bookworm
3.0.14-1~deb12u1
fixed
bookworm (security)
3.0.14-1~deb12u2
fixed
sid
3.3.2-2
fixed
trixie
3.3.2-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
edk2
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
impish
not-affected
focal
not-affected
bionic
not-affected
xenial
needs-triage
trusty
dne
nodejs
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
Fixed 12.22.9~dfsg-1ubuntu3.1
released
impish
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
openssl
noble
Fixed 3.0.2-0ubuntu2
released
mantic
Fixed 3.0.2-0ubuntu2
released
lunar
Fixed 3.0.2-0ubuntu2
released
kinetic
Fixed 3.0.2-0ubuntu2
released
jammy
Fixed 3.0.2-0ubuntu1.1
released
impish
Fixed 1.1.1l-1ubuntu1.3
released
focal
Fixed 1.1.1f-1ubuntu2.13
released
bionic
Fixed 1.1.1-1ubuntu2.1~18.04.17
released
xenial
Fixed 1.0.2g-1ubuntu4.20+esm3
released
trusty
Fixed 1.0.1f-1ubuntu2.27+esm10
released
openssl1.0
noble
dne
mantic
dne
lunar
dne
kinetic
dne
jammy
dne
impish
dne
focal
dne
bionic
Fixed 1.0.2n-1ubuntu5.9
released
xenial
dne
trusty
dne
Common Weakness Enumeration
References
https://cert-portal.siemens.com/productcert/pdf/ssa-953464.pdf
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VX4KWHPMKYJL6ZLW4M5IU7E5UV5ZWJQU/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNU5M7BXMML26G3GPYKFGQYPQDRSNKDD/
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0011
https://security.gentoo.org/glsa/202210-02
https://security.netapp.com/advisory/ntap-20220602-0009/
https://security.netapp.com/advisory/ntap-20220729-0004/
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
https://www.oracle.com/security-alerts/cpujul2022.html
https://cert-portal.siemens.com/productcert/pdf/ssa-953464.pdf
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VX4KWHPMKYJL6ZLW4M5IU7E5UV5ZWJQU/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNU5M7BXMML26G3GPYKFGQYPQDRSNKDD/
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0011
https://security.gentoo.org/glsa/202210-02
https://security.netapp.com/advisory/ntap-20220602-0009/
https://security.netapp.com/advisory/ntap-20220729-0004/
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
https://www.oracle.com/security-alerts/cpujul2022.html