Zercurity data services
  • Expand groupSummary
  • Applications (0)
  • Packages (0)
  • System updates (0)
  • Operating systems (0)

CVE-2022-37026

Description
In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS.
  • Risk: 10
CVSSv3
    CVSSv2

      Raw Object

      {
        "uuid": "15482c0c-015a-2c12-415a-470b60725d5a",
        "name": "CVE-2022-37026",
        "description": "In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS.",
        "cvss": null,
        "score": 0,
        "severity": "NONE",
        "cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "score3": 9.8,
        "severity3": "CRITICAL",
        "applications": [],
        "packages": [],
        "updates": [],
        "os": [],
        "risk": 10,
        "created_at": "2022-09-21T14:15:00+00:00",
        "updated_at": "2022-09-23T18:05:00+00:00",
        "deleted_at": null
      }