Search

安全ID : QSA-22-17

Multiple Vulnerabilities in OpenSSL

  • 发布日期 : May 23, 2022

  • 通用漏洞披露 : CVE-2022-1292 | CVE-2022-1343 | CVE-2022-1434 | CVE-2022-1473

  • 受影响产品: None

严重程度

状态

未受影响

Summary

OpenSSL recently disclosed multiple vulnerabilities:

  • CVE-2022-1292: The c_rehash script allows command injection
  • CVE-2022-1343: OCSP_basic_verify may incorrectly verify the response signing certificate
  • CVE-2022-1434: Incorrect MAC key used in the RC4-MD5 ciphersuite
  • CVE-2022-1473: Resource leakage when decoding certificates and keys

QNAP products are not affected.

修订历史: V1.0 (May 23, 2022) - Published

选择规格

      显示更多 隐藏更多
      open menu
      back to top