cbcvebase.
CVE-2022-2274
published 2022-07-01

CVE-2022-2274: The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA…

PriorityP270critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
44.88%
98.6th percentile
The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. SSL/TLS servers or other servers using 2048 bit RSA private keys running on machines supporting AVX512IFMA instructions of the X86_64 architecture are affected by this issue.

Affected

7 ranges
VendorProductVersion rangeFixed in
debianopenssl< openssl 3.0.4-2 (bookworm)openssl 3.0.4-2 (bookworm)
opensslopenssl
opensslopenssl
opensslopenssl>= 0 < 3.0.4-23.0.4-2
opensslopenssl>= 0 < 3.0.4-23.0.4-2
opensslopenssl>= 0 < 3.0.4-23.0.4-2
paloaltopan-os

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is specific to OpenSSL version 3.0.4 only; any system running exactly this version on X86_64 hardware with AVX512IFMA support is at risk of heap buffer overflow and potential RCE via RSA 2048-bit key operations
  • Detection scope: target SSL/TLS servers or any server process using 2048-bit RSA private keys on AVX512IFMA-capable X86_64 machines; monitor for unexpected crashes or memory corruption in OpenSSL 3.0.4 processes during RSA operations
  • The vulnerability was introduced by a specific upstream commit (10d8a10); patch presence/absence of this commit can be used to confirm vulnerable vs. patched OpenSSL 3.0.4 builds
  • ·Only OpenSSL exactly version 3.0.4 is affected; earlier and later versions are not vulnerable. Red Hat Enterprise Linux packages (RHEL 6–9, JBoss, JWS, RHV) are confirmed NOT affected as they did not backport the introducing commit.
  • ·The vulnerability only triggers on X86_64 hardware that supports AVX512IFMA instructions; systems without this CPU feature set are not affected regardless of OpenSSL version.
  • ·Debian fixed the issue in OpenSSL package version 3.0.4-2; systems running 3.0.4-2 or later in bookworm/forky/sid/trixie are resolved.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_oracle9.8CRITICAL
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.