CVE-2022-3515

A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2022-3515	Patch Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2135610	Exploit Issue Tracking Third Party Advisory
https://dev.gnupg.org/rK4b7d9cd4a018898d7714ce06f3faf2626c14582b	Exploit Patch Third Party Advisory
https://security.netapp.com/advisory/ntap-20230706-0008/
https://www.gnupg.org/blog/20221017-pepe-left-the-ksba.html	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:gnupg:libksba:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:gpg4win:gpg4win:*:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:a:gnupg:vs-desktop:*:*:*:*:*:*:*:*

Configuration 4 (hide)

OR	cpe:2.3:a:gnupg:gnupg:::::lts:::*
	cpe:2.3:a:gnupg:gnupg:::::-:::*

History

06 Jul 2023, 19:15

Type	Values Removed	Values Added
CWE	~~CWE-190~~
References		(CONFIRM) https://security.netapp.com/advisory/ntap-20230706-0008/ -

Information

Published : 2023-01-12 15:15

Updated : 2024-02-28 19:51

NVD link : CVE-2022-3515

Mitre link : CVE-2022-3515

CVE.ORG link : CVE-2022-3515

JSON object : View

Products Affected

gpg4win

gpg4win

gnupg

vs-desktop
libksba
gnupg

CWE

CWE-190

Integer Overflow or Wraparound

{"id": "CVE-2022-3515", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-01-12T15:15:10.187", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2022-3515", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135610", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://dev.gnupg.org/rK4b7d9cd4a018898d7714ce06f3faf2626c14582b", "tags": ["Exploit", "Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://security.netapp.com/advisory/ntap-20230706-0008/", "source": "secalert@redhat.com"}, {"url": "https://www.gnupg.org/blog/20221017-pepe-left-the-ksba.html", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-190"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment."}], "lastModified": "2023-07-06T19:15:09.857", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnupg:libksba:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05058020-26A0-4F46-9F30-F1CEF4AC330C", "versionEndExcluding": "1.6.3"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gpg4win:gpg4win:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FAB814C2-FA25-47AD-A418-2A47CC58CBE8", "versionEndExcluding": "4.1.0", "versionStartIncluding": "2.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnupg:vs-desktop:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63B1EC90-FBD7-48D7-8EE8-86D831CE94F6", "versionEndExcluding": "3.1.26", "versionStartIncluding": "3.1.16"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnupg:gnupg:*:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "87E3E8C5-03AE-46A0-B0DA-4E9C3BFA3E44", "versionEndExcluding": "2.2.41", "versionStartIncluding": "2.1.0"}, {"criteria": "cpe:2.3:a:gnupg:gnupg:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "F52C07A1-3B7F-4A65-B03D-E8BDFF469B0C", "versionEndExcluding": "2.4.0", "versionStartIncluding": "2.3.0"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}