Read buffer overruns processing ASN.1 strings
Summary
| CVE | CVE-2021-3712 |
|---|---|
| State | PUBLISHED |
| Assigner | openssl |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-08-24 15:15:09 UTC |
| Updated | 2026-04-16 15:16:45 UTC |
| Description | ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y). |
Risk And Classification
Primary CVSS: v3.1 7.4 HIGH from [email protected]
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
Problem Types: CWE-125 | Buffer overflow | CWE-125 CWE-125 Out-of-bounds Read
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | [email protected] | Primary | 7.4 | HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H |
| 3.1 | ADP | DECLARED | 7.4 | HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H |
| 3.1 | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | Secondary | 7.4 | HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H |
| 2.0 | [email protected] | Primary | 5.8 | AV:N/AC:M/Au:N/C:P/I:N/A:P |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
HighPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
HighIntegrity
NoneAvailability
HighCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
MediumAuthentication
NoneConfidentiality
PartialIntegrity
NoneAvailability
PartialAV:N/AC:M/Au:N/C:P/I:N/A:P
NVD Known Affected Configurations (CPE 2.3)
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | OpenSSL | OpenSSL | affected Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k) | Not specified |
| CNA | OpenSSL | OpenSSL | affected Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y) | Not specified |
| ADP | Siemens | BFCClient | affected V2.17 custom | Not specified |
| ADP | Siemens | Industrial Edge - Machine Insight App | affected * custom | Not specified |
| ADP | Siemens | Industrial Edge - PROFINET IO Connector | affected All versions < V1.1.1 | Not specified |
| ADP | Siemens | RUGGEDCOM RM1224 LTE4G EU | affected All versions < V7.1 | Not specified |
| ADP | Siemens | RUGGEDCOM RM1224 LTE4G NAM | affected All versions < V7.1 | Not specified |
| ADP | Siemens | RUGGEDCOM ROX MX5000 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX MX5000RE | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1400 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1500 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1501 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1510 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1511 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1512 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1524 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX1536 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | RUGGEDCOM ROX RX5000 | affected V2.15.0 custom | Not specified |
| ADP | Siemens | SCALANCE M804PB | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M812-1 ADSL-Router | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M812-1 ADSL-Router | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M816-1 ADSL-Router | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M816-1 ADSL-Router | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M826-2 SHDSL-Router | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M874-2 | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M874-3 | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M876-3 | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M876-3 ROK | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M876-4 EU | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE M876-4 NAM | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE MUM853-1 EU | affected V7.1 custom | Not specified |
| ADP | Siemens | SCALANCE MUM856-1 EU | affected V7.1 custom | Not specified |
| ADP | Siemens | SCALANCE MUM856-1 RoW | affected V7.1 custom | Not specified |
| ADP | Siemens | SCALANCE S615 LAN-Router | affected All versions < V7.1 | Not specified |
| ADP | Siemens | SCALANCE SC622-2C | affected All versions < V2.3 | Not specified |
| ADP | Siemens | SCALANCE SC632-2C | affected All versions < V2.3 | Not specified |
| ADP | Siemens | SCALANCE SC636-2C | affected All versions < V2.3 | Not specified |
| ADP | Siemens | SCALANCE SC642-2C | affected All versions < V2.3 | Not specified |
| ADP | Siemens | SCALANCE SC646-2C | affected All versions < V2.3 | Not specified |
| ADP | Siemens | SCALANCE W1748-1 M12 | affected V3.0.0 custom | Not specified |
| ADP | Siemens | SCALANCE W1748-1 M12 | affected V3.0.0 custom | Not specified |
| ADP | Siemens | SCALANCE W1788-1 M12 | affected V3.0.0 custom | Not specified |
| ADP | Siemens | SCALANCE W1788-2 EEC M12 | affected V3.0.0 custom | Not specified |
| ADP | Siemens | SCALANCE W1788-2 M12 | affected V3.0.0 custom | Not specified |
| ADP | Siemens | SCALANCE W1788-2IA M12 | affected V3.0.0 custom | Not specified |
| ADP | Siemens | SCALANCE W721-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W721-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W721-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W721-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W722-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W722-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W722-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W722-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W722-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W722-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 USA | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W734-1 RJ45 USA | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W738-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W738-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W738-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W738-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W748-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W761-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W761-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W761-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W761-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 USA | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W774-1 RJ45 USA | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 EEC USA | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W778-1 M12 EEC USA | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 SFP | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 SFP | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 SFP | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2 SFP | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2IA RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2IA RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2IA RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W786-2IA RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-1 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 M12 EEC | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE W788-2 RJ45 | affected V6.6.0 custom | Not specified |
| ADP | Siemens | SCALANCE WAM766-1 | affected V1.2.0 custom | Not specified |
| ADP | Siemens | SCALANCE WAM766-1 US | affected V1.2.0 custom | Not specified |
| ADP | Siemens | SCALANCE WAM766-1 EEC | affected V1.2.0 custom | Not specified |
| ADP | Siemens | SCALANCE WAM766-1 EEC US | affected V1.2.0 custom | Not specified |
| ADP | Siemens | SCALANCE WUM766-1 | affected V1.2.0 custom | Not specified |
| ADP | Siemens | SCALANCE WUM766-1 USA | affected V1.2.0 custom | Not specified |
| ADP | Siemens | SCALANCE X200-4P IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X201-3P IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X201-3P IRT PRO | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X202-2IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X202-2P IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X202-2P IRT PRO | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X204-2 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X204-2FM | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X204-2LD | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X204-2LD TS | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X204-2TS | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X204IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X204IRT PRO | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE X206-1 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X206-1LD | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X208 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X208PRO | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X212-2 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X212-2LD | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X216 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X224 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 230V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 230V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 24V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 24V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 2x 230V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 2x 230V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 2x 24V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X302-7 EEC 2x 24V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X304-2FE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X306-1LD FE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 230V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 230V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 24V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 24V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 2x 230V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 2x 230V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 2x 24V Coated | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-2 EEC 2x 24V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-3 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-3 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-3LD | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X307-3LD | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2LD | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2LD | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2LH | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2LH | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2LH | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2LH | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2M | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2M | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2M PoE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2M PoE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2M TS | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X308-2M TS | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X310 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X310 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X310FE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X310FE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X320-1 FE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X320-1-2LD FE | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE X408-2 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XF201-3P IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE XF202-2P IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE XF204 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE XF204-2 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE XF204-2BA IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE XF204IRT | affected V5.5.2 custom | Not specified |
| ADP | Siemens | SCALANCE XF206-1 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE XF208 | affected All versions < V5.2.6 | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 230V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 230V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 230V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 230V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M TS 24V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-12M TS 24V | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 100-240VAC/60-250VDC Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 100-240VAC/60-250VDC Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 100-240VAC/60-250VDC Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 100-240VAC/60-250VDC Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 100-240VAC/60-250VDC Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 100-240VAC/60-250VDC Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 100-240VAC/60-250VDC Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 100-240VAC/60-250VDC Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M EEC 2x 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M PoE 230V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M PoE 230V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M PoE 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M PoE 24V Ports On Rear | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SCALANCE XR324-4M PoE TS 24V Ports On Front | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SIMATIC CP 1242-7 V2 | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIMATIC CP 1243-1 | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIMATIC CP 1243-7 LTE EU | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIMATIC CP 1243-7 LTE US | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIMATIC CP 1243-8 IRC | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIMATIC CP 1542SP-1 | affected V2.2.28 custom | Not specified |
| ADP | Siemens | SIMATIC CP 1543-1 | affected All versions < V3.0.22 | Not specified |
| ADP | Siemens | SIMATIC CP 1543SP-1 | affected V2.2.28 custom | Not specified |
| ADP | Siemens | SIMATIC CP 1545-1 | affected All versions < V1.1 | Not specified |
| ADP | Siemens | SIMATIC PCS Neo Administration Console | affected V3.1.1 custom | Not specified |
| ADP | Siemens | SIMATIC Process Historian OPC UA Server | affected V2020 SP1 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1211C AC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1211C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1211C DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1212C AC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1212C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1212C DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1212FC DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1212FC DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1214C AC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1214C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1214C DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1214FC DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1214FC DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1215C AC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1215C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1215C DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1215FC DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1215FC DC/DC/Rly | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIMATIC S7-1200 CPU 1217C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SINEC NMS | affected V1.0 SP3 custom | Not specified |
| ADP | Siemens | SINEMA Remote Connect Server | affected V3.1 custom | Not specified |
| ADP | Siemens | SINEMA Server V14 | affected * custom | Not specified |
| ADP | Siemens | SINUMERIK Operate | affected All versions < V4.95 SP1 | Not specified |
| ADP | Siemens | SIPLUS ET 200SP CP 1543SP-1 ISEC | affected V2.2.28 custom | Not specified |
| ADP | Siemens | SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL | affected V2.2.28 custom | Not specified |
| ADP | Siemens | SIPLUS NET CP 1242-7 V2 | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIPLUS NET CP 1543-1 | affected All versions < V3.0.22 | Not specified |
| ADP | Siemens | SIPLUS NET SCALANCE X308-2 | affected V4.1.4 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CP 1243-1 | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CP 1243-1 RAIL | affected All versions < V3.3.46 | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212 AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212 DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212 DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212C AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214 AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214 DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214FC DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1214FC DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215C AC/DC/RLY | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215C DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | SIPLUS S7-1200 CPU 1215FC DC/DC/DC | affected V4.5.2 custom | Not specified |
| ADP | Siemens | TIA Administrator | affected V1.0.7 custom | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Oracle Critical Patch Update Advisory - April 2022 | af854a3a-2127-422b-91ae-364da2661108 | www.oracle.com | Patch, Third Party Advisory |
| August 2021 OpenSSL Vulnerabilities in NetApp Products | NetApp Product Security | af854a3a-2127-422b-91ae-364da2661108 | security.netapp.com | Third Party Advisory |
| cert-portal.siemens.com/productcert/html/ssa-028723.html | 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e | cert-portal.siemens.com | |
| Oracle Critical Patch Update Advisory - October 2021 | af854a3a-2127-422b-91ae-364da2661108 | www.oracle.com | Patch, Third Party Advisory |
| Security Bulletin - ePolicy Orchestrator update addresses two product vulnerabilities (CVE-2021-31834 and CVE-2021-31835) and updates Java, OpenSSL, and Tomcat | af854a3a-2127-422b-91ae-364da2661108 | kc.mcafee.com | Third Party Advisory |
| cert-portal.siemens.com/productcert/html/ssa-389290.html | 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e | cert-portal.siemens.com | |
| cert-portal.siemens.com/productcert/html/ssa-244969.html | 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e | cert-portal.siemens.com | |
| git.openssl.org Git | af854a3a-2127-422b-91ae-364da2661108 | git.openssl.org | |
| [R1] Nessus Network Monitor 6.0.0 Fixes Multiple Third-party Vulnerabilities - Security Advisory | Tenable® | af854a3a-2127-422b-91ae-364da2661108 | www.tenable.com | Patch, Third Party Advisory |
| cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | Patch, Third Party Advisory |
| www.openssl.org/news/secadv/20210824.txt | af854a3a-2127-422b-91ae-364da2661108 | www.openssl.org | Vendor Advisory |
| [R1] Stand-alone Security Patch Available for Tenable.sc versions 5.16.0 to 5.19.1 - Security Advisory | Tenable® | af854a3a-2127-422b-91ae-364da2661108 | www.tenable.com | Third Party Advisory |
| OpenSSL: Multiple Vulnerabilities (GLSA 202210-02) — Gentoo security | af854a3a-2127-422b-91ae-364da2661108 | security.gentoo.org | Third Party Advisory |
| Oracle Critical Patch Update Advisory - January 2022 | af854a3a-2127-422b-91ae-364da2661108 | www.oracle.com | Third Party Advisory |
| security.netapp.com/advisory/ntap-20240621-0006 | af854a3a-2127-422b-91ae-364da2661108 | security.netapp.com | |
| lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e58... | af854a3a-2127-422b-91ae-364da2661108 | lists.apache.org | |
| cert-portal.siemens.com/productcert/html/ssa-019200.html | 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e | cert-portal.siemens.com | |
| [SECURITY] [DLA 2766-1] openssl security update | af854a3a-2127-422b-91ae-364da2661108 | lists.debian.org | Mailing List, Third Party Advisory |
| [SECURITY] [DLA 2774-1] openssl1.0 security update | af854a3a-2127-422b-91ae-364da2661108 | lists.debian.org | Mailing List, Third Party Advisory |
| oss-security - OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712) | af854a3a-2127-422b-91ae-364da2661108 | www.openwall.com | Mailing List, Third Party Advisory |
| git.openssl.org Git - openssl.git/commitdiff | af854a3a-2127-422b-91ae-364da2661108 | git.openssl.org | |
| lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691... | af854a3a-2127-422b-91ae-364da2661108 | lists.apache.org | |
| IBM Spectrum Protect: Multiple Vulnerabilities (GLSA 202209-02) — Gentoo security | af854a3a-2127-422b-91ae-364da2661108 | security.gentoo.org | Third Party Advisory |
| cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | Patch, Third Party Advisory |
| Debian -- Security Information -- DSA-4963-1 openssl | af854a3a-2127-422b-91ae-364da2661108 | www.debian.org | Third Party Advisory |
| git.openssl.org Git - openssl.git/commitdiff | MITRE | git.openssl.org | |
| git.openssl.org Git - openssl.git/commitdiff | MITRE | git.openssl.org | |
| Pony Mail! | MITRE | lists.apache.org | |
| Pony Mail! | MITRE | lists.apache.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
CNA: Ingo Schwarze (en)
Legacy QID Mappings
- 159574 Oracle Enterprise Linux Security Update for openssl (ELSA-2021-5226)
- 159581 Oracle Enterprise Linux Security Update for openssl (ELSA-2021-9632)
- 159589 Oracle Enterprise Linux Security Update for openssl (ELSA-2022-0064)
- 159615 Oracle Enterprise Linux Security Update for openssl (ELSA-2022-9017)
- 159616 Oracle Enterprise Linux Security Update for openssl (ELSA-2022-9023)
- 178774 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (DSA 4963-1)
- 178810 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (DLA 2766-1)
- 178853 Debian Security Update for Open Secure Sockets Layer1.0 (OpenSSLl1.0) (DLA 2774-1)
- 182376 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (CVE-2021-3712)
- 198469 Ubuntu Security Notification for Open Secure Sockets Layer (OpenSSL) Vulnerabilities (USN-5051-1)
- 198473 Ubuntu Security Notification for Open Secure Sockets Layer (OpenSSL) Vulnerability (USN-5051-3)
- 198517 Ubuntu Security Notification for EDK II Vulnerabilities (USN-5088-1)
- 239865 Red Hat Update for red hat jboss core services apache Hypertext Transfer Protocol (HTTP) server 2.4.37 sp10 (RHSA-2021:4614)
- 239977 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2021:5226)
- 239990 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:0064)
- 330091 IBM Advanced Interactive eXecutive (AIX) Open Secure Sockets Layer (OpenSSL) Out-Of-Bounds Vulnerability (openssl_advisory34)
- 352846 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL): ALAS-2021-1541
- 352853 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL)11: ALAS2-2021-1714
- 352867 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL): ALAS2-2021-1721
- 353093 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL) : AL2012-2021-354
- 357333 Amazon Linux Security Advisory for edk2 : ALAS2-2024-2502
- 375956 F5 BIG-IP Application Security Manager (ASM), Local Traffic Manager (LTM), Access Policy Manager (APM) Open Secure Sockets Layer (OpenSSL) Vulnerability (K19559038)
- 375971 Nmap Buffer Overrun Vulnerability
- 376103 Open Secure Sockets Layer (OpenSSL) Security Update
- 376202 Reuse
- 376204 Mysql Workbench Critical Patch Update Oct 2021
- 376257 Oracle PeopleSoft Enterprise PeopleTools Product Multiple Vulnerabilities (CPUJAN2022)
- 376363 Oracle MYSQL Connector/ODBC Critical Patch Update (CPU) January 2022 (CPUJAN2022)
- 377105 Alibaba Cloud Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ALINUX3-SA-2022:0025)
- 377435 Alibaba Cloud Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ALINUX2-SA-2022:0002)
- 379452 IBM Cognos Analytics Multiple Vulnerabilities (7123154)
- 43988 Hewlett Packard Enterprise (HPE) ArubaOS Multiple Vulnerabilities (ARUBA-PSA-2023-002)
- 500499 Alpine Linux Security Update for Open Secure Sockets Layer (OpenSSL)
- 500567 Alpine Linux Security Update for Open Secure Sockets Layer (OpenSSL)
- 500766 Alpine Linux Security Update for openssl
- 501166 Alpine Linux Security Update for openssl
- 501985 Alpine Linux Security Update for Open Secure Sockets Layer3 (OpenSSL3)
- 502904 Alpine Linux Security Update for openssl1.1-compat
- 504258 Alpine Linux Security Update for openssl
- 505781 Alpine Linux Security Update for openssl1.1-compat
- 591054 Mitsubishi Electric MELSOFT GT OPC UA, GT SoftGOT2000 Multiple Vulnerabilities (ICSA-22-130-06)
- 591311 Bosch Rexroth PRA-ES8P2S Ethernet-Switch Multiple Vulnerabilities (BOSCH-SA-247053-BT)
- 670831 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-2717)
- 670959 EulerOS Security Update for Open Secure Sockets Layer098e (OpenSSL098e) (EulerOS-SA-2021-2667)
- 670972 EulerOS Security Update for Compat-Open Secure Sockets Layer (compat-OpenSSL) (EulerOS-SA-2021-2625)
- 670993 EulerOS Security Update for Open Secure Sockets Layer111d (OpenSSL111d) (EulerOS-SA-2021-2668)
- 671015 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-2692)
- 671019 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-2639)
- 671031 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-2666)
- 671176 EulerOS Security Update for shim (EulerOS-SA-2021-2927)
- 671177 EulerOS Security Update for shim (EulerOS-SA-2021-2920)
- 671245 EulerOS Security Update for Open Secure Sockets Layer098e (OpenSSL098e) (EulerOS-SA-2022-1180)
- 671248 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1181)
- 690055 Free Berkeley Software Distribution (FreeBSD) Security Update for Open Secure Sockets Layer (OpenSSL) (96811d4a-04ec-11ec-9b84-d4c9ef517024)
- 690780 Free Berkeley Software Distribution (FreeBSD) Security Update for mysql (7262f826-795e-11ec-8be6-d4c9ef517024)
- 710616 Gentoo Linux IBM Spectrum Protect Multiple Vulnerabilities (GLSA 202209-02)
- 710638 Gentoo Linux Open Secure Sockets Layer (OpenSSL) Multiple Vulnerabilities (GLSA 202210-02)
- 730206 McAfee Web Gateway Multiple Vulnerabilities (WP-3792, WP-4003, WP-4021, WP-4058, WP-4067)
- 730377 Dell EMC Precision Rack Security Update for Multiple iDRAC Vulnerabilities (DSA-2021-259) -iDRAC 8,9
- 751027 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:2831-1)
- 751028 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:2829-1)
- 751029 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:2826-1)
- 751030 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:2827-1)
- 751031 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:2833-1)
- 751032 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:2825-1)
- 751034 OpenSUSE Security Update for openssl-1_0_0 (openSUSE-SU-2021:2827-1)
- 751035 OpenSUSE Security Update for openssl-1_1 (openSUSE-SU-2021:2830-1)
- 751049 OpenSUSE Security Update for Open Secure Sockets Layer (OpenSSL) (openSUSE-SU-2021:1189-1)
- 751050 OpenSUSE Security Update for Open Secure Sockets Layer (OpenSSL) (openSUSE-SU-2021:1188-1)
- 751059 SUSE Enterprise Linux Security Update for compat- Open Secure Sockets Layer (openssl098) (SUSE-SU-2021:2852-1)
- 751106 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_1 ( openssl-1_1) (SUSE-SU-2021:2967-1)
- 751108 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_1 (openssl-1_1) (SUSE-SU-2021:2968-1)
- 751116 OpenSUSE Security Update for Open Secure Sockets Layer-1_1 (openssl-1_1) (openSUSE-SU-2021:2966-1)
- 751118 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_1 (OpenSSL-1_1) (SUSE-SU-2021:2996-1)
- 751119 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_0_0 (OpenSSL-1_0_0) (SUSE-SU-2021:2994-1)
- 751122 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_0_0 (SUSE-SU-2021:2995-1)
- 751123 OpenSUSE Security Update for Open Secure Sockets Layer-1_1 (OpenSSL-1_1) (openSUSE-SU-2021:1248-1)
- 751125 OpenSUSE Security Update for Open Secure Sockets Layer-1_0_0 (OpenSSL-1_0_0) (openSUSE-SU-2021:2994-1)
- 751128 SUSE Enterprise Linux Security Update for compat-Open Secure Sockets Layer098 (OpenSSL098) (SUSE-SU-2021:3019-1)
- 751129 OpenSUSE Security Update for Open Secure Sockets Layer-1_0_0 (OpenSSL-1_0_0) (openSUSE-SU-2021:1261-1)
- 751152 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2021:3144-1)
- 900406 Common Base Linux Mariner (CBL-Mariner) Security Update for Open Secure Sockets Layer (OpenSSL) (6006)
- 901882 Common Base Linux Mariner (CBL-Mariner) Security Update for Open Secure Sockets Layer (OpenSSL) (6780-1)
- 940266 AlmaLinux Security Update for Open Secure Sockets Layer (OpenSSL) (ALSA-2021:5226)
- 960090 Rocky Linux Security Update for Open Secure Sockets Layer (OpenSSL) (RLSA-2021:5226)