Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2022-37434

Disclosure Date: August 05, 2022 •

CVE-2022-37434 CVSS v3 Base Score: 9.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

9.8 Critical

Impact Score:

5.9

Exploitability Score:

3.9

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

apple,
debian,
fedoraproject,
netapp,
stormshield,
zlib

Products

active iq unified manager -,
debian linux 10.0,
fedora 35,
fedora 36,
fedora 37,
h300s firmware -,
h500s firmware -,
h700s firmware -,
hci -,
hci compute node -,
ipados,
iphone os,
macos,
management services for element software -,
oncommand workflow automation -,
ontap select deploy administration utility -,
storagegrid -,
stormshield network security,
watchos,
zlib

References

Canonical

CVE-2022-37434 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434)

Advisory

[oss-security] 20220805 zlib buffer overflow (http://www.openwall.com/lists/oss-security/2022/08/05/2)

[oss-security] 20220808 Re: zlib buffer overflow (http://www.openwall.com/lists/oss-security/2022/08/09/1)

FEDORA-2022-25e4dbedf9 (https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/)

DSA-5218 (https://www.debian.org/security/2022/dsa-5218)

FEDORA-2022-15da0cf165 (https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/)

https://security.netapp.com/advisory/ntap-20220901-0005/

FEDORA-2022-b8232d1cca (https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JWN4VE3JQR4O2SOUS5TXNLANRPMHWV4I/)

[debian-lts-announce] 20220912 [SECURITY] [DLA 3103-1] zlib security update (https://lists.debian.org/debian-lts-announce/2022/09/msg00012.html)

FEDORA-2022-3c28ae0cd8 (https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X5U7OTKZSHY2I3ZFJSR2SHFHW72RKGDK/)

FEDORA-2022-0b517a5397 (https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PAVPQNCG3XRLCLNSQRM3KAN5ZFMVXVTY/)

https://support.apple.com/kb/HT213490

https://support.apple.com/kb/HT213489

https://support.apple.com/kb/HT213488

https://support.apple.com/kb/HT213494

https://support.apple.com/kb/HT213493

https://support.apple.com/kb/HT213491

20221030 APPLE-SA-2022-10-27-5 Additional information for APPLE-SA-2022-10-24-2 macOS Ventura 13 (http://seclists.org/fulldisclosure/2022/Oct/41)

Exploit

The following exploit POCs have not been verified by Rapid7 researchers, but are sourced from: nomi-sec/PoC-in-GitHub.
Additional sources will be added here as they become relevant.
Notes: We will only add the top 3 POCs for a given CVE. POCs added here must have at least 2 GitHub stars.

CVE-2022-37434_poc (https://github.com/xen0bit/CVE-2022-37434_poc)