CVE-2022-3602: OpenSSL X.509 Buffer Overflow

Score: 7.5
HIGH
Published: 2022-11-01Affected: OpenSSL 3.0.0 - 3.0.6CWE-120 β†—

Is OpenSSL 3.x vulnerable to buffer overflow?

A stack-based buffer overflow in OpenSSL 3.x X.509 certificate verification. Processing a maliciously crafted email address in a certificate can trigger a 4-byte overflow, potentially enabling remote code execution or denial of service.

Impact & Exploitation

Originally classified as CRITICAL (later downgraded). Triggered emergency patching across millions of systems. Particularly concerning for TLS-enabled embedded devices and IoT.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS7.5
SeverityHIGH
CWECWE-120
Published2022-11-01

Tags

openssltlsbuffer-overflowembedded

Quick Links

Is your system affected?

Precogs AI detects OpenSSL X.509 Buffer Overflow in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2022-3602 OpenSSL X.509 Buffer Overflow don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo