How severe is CVE-2022-4203?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.9 out of 10.

What type of vulnerability is CVE-2022-4203?

This is classified as CWE-125, which is a common weakness in software security.

CVE-2022-4203

MEDIUM Year: 2022

CVSS v3 Score

4.9

Medium

Weakness Type

CWE-125

View all →

Vulnerability Description

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate verification despite failure to construct a path to a trusted issuer. The read buffer overrun might result in a crash which could lead to a denial of service attack. In theory it could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext) although we are not aware of any working exploit leading to memory contents disclosure as of the time of release of this advisory. In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

CVE-2018-17206

MEDIUM

CVSS:4.9(Medium)

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6. The decode_bundle function inside lib/ofp-actions.c is affected by a buffer over-read issue during BUNDLE action decoding.

CWE-1252018

CVE-2019-9431

MEDIUM

CVSS:4.9(Medium)

In Bluetooth, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with heap information written to the log with System execution privileges...

CWE-1252019

CVE-2019-9434

MEDIUM

CVSS:4.9(Medium)

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with heap information written to the log with System execution priv...

CWE-1252019

CVE-2020-0157

MEDIUM

CVSS:4.9(Medium)

In nfa_hci_conn_cback of nfa_hci_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure via compromised device firmware with Sy...

CWE-1252020

CVE-2020-0348

MEDIUM

CVSS:4.9(Medium)

In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over NFC with System execution privileges needed. User interaction is not...

CWE-1252020

CVE-2021-0660

MEDIUM

CVSS:4.9(Medium)

In ccu, there is a possible out of bounds read due to incorrect error handling. This could lead to information disclosure with System execution privileges needed. User interaction is not needed for ex...

CWE-1252021

CVE-2022-4203

Vulnerability Description

Related Vulnerabilities

CVE-2018-17206

CVE-2019-9431

CVE-2019-9434

CVE-2020-0157

CVE-2020-0348

CVE-2021-0660