OpenSSL up to 1.0.2zc/1.1.1m/3.0.1 Non-prime Moduli BN_mod_sqrt infinite loop
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.7 | $0-$5k | 0.00 |
Summary
A vulnerability was found in OpenSSL up to 1.0.2zc/1.1.1m/3.0.1. It has been classified as critical. Impacted is the function BN_mod_sqrt of the component Non-prime Moduli Handler. Performing a manipulation results in infinite loop.
This vulnerability was named CVE-2022-0778. The attack may be initiated remotely. There is no available exploit.
Upgrading the affected component is recommended.
Details
A vulnerability, which was classified as critical, was found in OpenSSL up to 1.0.2zc/1.1.1m/3.0.1 (Network Encryption Software). This affects the function BN_mod_sqrt of the component Non-prime Moduli Handler. The manipulation with an unknown input leads to a infinite loop vulnerability. CWE is classifying the issue as CWE-835. The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop. This is going to have an impact on availability.
The weakness was presented 03/15/2022. It is possible to read the advisory at openssl.org. This vulnerability is uniquely identified as CVE-2022-0778 since 02/28/2022. Technical details of the vulnerability are known, but there is no available exploit. The attack technique deployed by this issue is T1499 according to MITRE ATT&CK.
The vulnerability scanner Nessus provides a plugin with the ID 209854 (Fortinet FortiWeb in OpenSSL library (FG-IR-22-059)), which helps to determine the existence of the flaw in a target environment.
Upgrading to version 1.0.2zd, 1.1.1n or 3.0.2 eliminates this vulnerability. Applying the patch 3118eb64934499d93db3230748a452351d1d9a65 is able to eliminate this problem. The bugfix is ready for download at git.openssl.org. The best possible mitigation is suggested to be upgrading to the latest version.
The vulnerability is also documented in the vulnerability database at Tenable (209854). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Name
Version
- 1.0.2za
- 1.0.2zb
- 1.0.2zc
- 1.1.1
- 1.1.1a
- 1.1.1b
- 1.1.1c
- 1.1.1d
- 1.1.1e
- 1.1.1f
- 1.1.1g
- 1.1.1h
- 1.1.1i
- 1.1.1j
- 1.1.1k
- 1.1.1l
- 1.1.1m
- 3.0.0
- 3.0.1
License
Website
- Product: https://www.openssl.org/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.8VulDB Meta Temp Score: 6.7
VulDB Base Score: 5.3
VulDB Temp Score: 5.1
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.5
NVD Vector: 🔍
ADP CISA Base Score: 7.5
ADP CISA Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Infinite loopCWE: CWE-835 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 209854
Nessus Name: Fortinet FortiWeb in OpenSSL library (FG-IR-22-059)
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: OpenSSL 1.0.2zd/1.1.1n/3.0.2
Patch: 3118eb64934499d93db3230748a452351d1d9a65
Timeline
02/28/2022 🔍03/15/2022 🔍
03/15/2022 🔍
05/26/2026 🔍
Sources
Product: openssl.orgAdvisory: openssl.org
Status: Confirmed
CVE: CVE-2022-0778 (🔍)
GCVE (CVE): GCVE-0-2022-0778
GCVE (VulDB): GCVE-100-195123
Entry
Created: 03/15/2022 20:26Updated: 05/26/2026 15:47
Changes: 03/15/2022 20:26 (42), 03/18/2022 11:17 (1), 06/10/2022 15:31 (19), 06/22/2024 15:23 (16), 10/29/2024 01:15 (2), 05/26/2026 15:47 (11)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
About this vulnerability,the affected version is an interval, not a single version. Like the description of this issue.
Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).
So the information of the CPE is not correct.
Can you update this? Thanks a lot.
CPE 2.3信息编辑
cpe:2.3:a:openssl:openssl:1.0.2zc:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.1.1m:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:3.0:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:3.0.1:*:*:*:*:*:*:*
CPE 2.2信息编辑
cpe:/a:openssl:openssl:1.0.2zc
cpe:/a:openssl:openssl:1.1.1m
cpe:/a:openssl:openssl:3.0
cpe:/a:openssl:openssl:3.0.1
Do you know our Splunk app?
Download it now for free!