CVE-2022-1292
CVSS v3.1
9.8 (Critical)
CVSS v2.0
10 (High)
EPSS
12.50 % (96th)
Affected Products
51
Advisories
38
The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).
Weaknesses
- CWE-78
- Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Related CVEs
- CVE Status
- PUBLISHED
- CNA
- OpenSSL Software Foundation
- Published Date
-
2022-05-03 16:15:18
(2 years ago) - Updated Date
-
2023-11-07 03:41:52
(10 months ago)
Affected Products
- Active Iq Unified Manager
- Clustered Data Ontap
- Clustered Data Ontap Antivirus Connector
- Oncommand Insight
- Oncommand Workflow Automation
- Santricity Smi-s Provider
- Smi-s Provider
- Snapcenter
- Snapmanager
- Solidfire\, Enterprise Sds \& Hci Storage Node
- Solidfire \& Hci Management Node
- A250
- A700s
- Aff 500f
- Aff 8300
- Aff 8700
- Aff A400
- Fabric-attached Storage A400
- Fas 500f
- Fas 8300
- Fas 8700
- H300e
- H300s
- H410s
- H500e
- H500s
- H700e
- H700s
- A250 Firmware
- A700s Firmware
- Aff 500f Firmware
- Aff 8300 Firmware
- Aff 8700 Firmware
- Aff A400 Firmware
- Fabric-attached Storage A400 Firmware
- Fas 500f Firmware
- Fas 8300 Firmware
- Fas 8700 Firmware
- H300e Firmware
- H300s Firmware
- H410s Firmware
- H500e Firmware
- H500s Firmware
- H700e Firmware
- H700s Firmware
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
AND |
|
---|
Configuration #5
AND |
|
---|
Configuration #6
AND |
|
---|
Configuration #7
AND |
|
---|
Configuration #8
AND |
|
---|
Configuration #9
AND |
|
---|
Configuration #10
AND |
|
---|
Configuration #11
AND |
|
---|
Configuration #12
AND |
|
---|
Configuration #13
AND |
|
---|
Configuration #14
AND |
|
---|
Configuration #15
AND |
|
---|
Configuration #16
AND |
|
---|
Configuration #17
AND |
|
---|
Configuration #18
AND |
|
---|
Configuration #19
AND |
|
---|
Configuration #20
AND |
|
---|
Configuration #21
|
Configuration #22
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...