Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-2068

In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other places in the script where the file names of certificates being hashed were possibly passed to a command executed through the shell. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in OpenSSL 1.1.1p (Affected 1.1.1-1.1.1o). Fixed in OpenSSL 1.0.2zf (Affected 1.0.2-1.0.2ze).

Security Impact Summary

This vulnerability carries a HIGH severity rating with a CVSS v3.1 score of 7.3, requiring local system access to exploit with relatively low complexity though user interaction is required requiring only low-level privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 43 products from openssl, from debian, from fedoraproject and 40 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2022, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2022-06-21T15:15:09.060

Last Modified

2025-11-03T22:15:58.023

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.3 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

10.0

Weaknesses

Type: Primary
CWE-78
Type: Secondary
CWE-78

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	openssl	openssl	< 1.0.2zf	Yes
Application	openssl	openssl	< 1.1.1p	Yes
Application	openssl	openssl	< 3.0.4	Yes
Operating System	debian	debian_linux	10.0	Yes
Operating System	debian	debian_linux	11.0	Yes
Operating System	fedoraproject	fedora	35	Yes
Operating System	fedoraproject	fedora	36	Yes
Application	siemens	sinec_ins	< 1.0	Yes
Application	siemens	sinec_ins	1.0	Yes
Application	siemens	sinec_ins	1.0	Yes
Application	siemens	sinec_ins	1.0	Yes
Application	netapp	element_software	-	Yes
Application	netapp	hci_management_node	-	Yes
Application	netapp	ontap_antivirus_connector	-	Yes
Application	netapp	ontap_select_deploy_administration_utility	-	Yes
Application	netapp	santricity_smi-s_provider	-	Yes
Application	netapp	smi-s_provider	-	Yes
Application	netapp	snapmanager	-	Yes
Application	netapp	solidfire	-	Yes
Operating System	netapp	bootstrap_os	-	Yes
Hardware	netapp	hci_compute_node	-	No
Operating System	netapp	h615c_firmware	-	Yes
Hardware	netapp	h615c	-	No
Operating System	netapp	h610s_firmware	-	Yes
Hardware	netapp	h610s	-	No
Operating System	netapp	h610c_firmware	-	Yes
Hardware	netapp	h610c	-	No
Operating System	netapp	h410c_firmware	-	Yes
Hardware	netapp	h410c	-	No
Operating System	netapp	h300s_firmware	-	Yes
Hardware	netapp	h300s	-	No
Operating System	netapp	h500s_firmware	-	Yes
Hardware	netapp	h500s	-	No
Operating System	netapp	h700s_firmware	-	Yes
Hardware	netapp	h700s	-	No
Operating System	netapp	h410s_firmware	-	Yes
Hardware	netapp	h410s	-	No
Operating System	netapp	fas_8300_firmware	-	Yes
Hardware	netapp	fas_8300	-	No
Operating System	netapp	fas_8700_firmware	-	Yes
Hardware	netapp	fas_8700	-	No
Operating System	netapp	fas_a400_firmware	-	Yes
Hardware	netapp	fas_a400	-	No
Operating System	netapp	aff_8300_firmware	-	Yes
Hardware	netapp	aff_8300	-	No
Operating System	netapp	aff_8700_firmware	-	Yes
Hardware	netapp	aff_8700	-	No
Operating System	netapp	aff_a400_firmware	-	Yes
Hardware	netapp	aff_a400	-	No
Application	broadcom	sannav	-	Yes

References

https://cert-portal.siemens.com/productcert/pdf/ssa-332410.pdf Third Party Advisory ([email protected])
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2c9c35870601b4a44d86ddbf512b38df38285cfa Patch ([email protected])
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9 Patch ([email protected])
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=9639817dac8bbbaa64d09efad7464ccc405527c7 Patch ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6WZZBKUHQFGSKGNXXKICSRPL7AMVW5M5/ Mailing List, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/ Mailing List, Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20220707-0008/ Third Party Advisory ([email protected])
https://www.debian.org/security/2022/dsa-5169 Third Party Advisory ([email protected])
https://www.openssl.org/news/secadv/20220621.txt Vendor Advisory ([email protected])
http://seclists.org/fulldisclosure/2024/Nov/0 (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-332410.pdf Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2c9c35870601b4a44d86ddbf512b38df38285cfa Patch (af854a3a-2127-422b-91ae-364da2661108)
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9 Patch (af854a3a-2127-422b-91ae-364da2661108)
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=9639817dac8bbbaa64d09efad7464ccc405527c7 Patch (af854a3a-2127-422b-91ae-364da2661108)
https://gitlab.com/fraf0/cve-2022-1292-re_score-analysis (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6WZZBKUHQFGSKGNXXKICSRPL7AMVW5M5/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20220707-0008/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2022/dsa-5169 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.openssl.org/news/secadv/20220621.txt Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For openssl's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.