[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-3437":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":26,"downstream":27,"duplicates":66,"related":67,"reserved_at":9,"published_at":76,"modified_at":77,"state":78,"summary":79,"references_raw":88,"kevs":126,"epss":127,"epss_history":130,"metrics":397,"affected":408},"CVE-2022-3437","A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-122","Heap-based Buffer Overflow","A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().","weakness","Draft","Variant","High",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64],{"_key":29},"ALPINE-CVE-2022-3437",{"_key":31},"SUSE-SU-2023:0081-1",{"_key":33},"SUSE-SU-2022:4395-1",{"_key":35},"SUSE-SU-2023:0160-1",{"_key":37},"OPENSUSE-SU-2023:0019-1",{"_key":39},"OPENSUSE-SU-2023:0020-1",{"_key":41},"OPENSUSE-SU-2024:12454-1",{"_key":43},"DLA-3206-1",{"_key":45},"DLA-3792-1",{"_key":47},"DSA-5287-1",{"_key":49},"DSA-5647-1",{"_key":51},"MGASA-2022-0468",{"_key":53},"MGASA-2023-0010",{"_key":55},"UBUNTU-CVE-2022-3437",{"_key":57},"USN-5822-1",{"_key":59},"USN-5936-1",{"_key":61},"DEBIAN-CVE-2022-3437",{"_key":63},"USN-5800-1",{"_key":65},"USN-7582-1",[],[68,69,70,71,72,73,74,75],{"_key":53},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":51},"2023-01-12T00:00:00.000Z","2024-10-28T18:59:39.543Z","Modified",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":81,"epss_score":82,"severity":83,"severity_score":84,"severity_version":85,"severity_source":86,"severity_vector":87,"severity_status":78},false,"low",0.00727,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[89,96,101,105,110,114,118,122],{"url":90,"sources":91,"tags":93},"https://bugzilla.redhat.com/show_bug.cgi?id=2137774",[92,86],"cve.org",[94,95],"Issue Tracking","Third Party Advisory",{"url":97,"sources":98,"tags":99},"https://www.samba.org/samba/security/CVE-2022-3437.html",[92,86],[100],"Vendor Advisory",{"url":102,"sources":103,"tags":104},"https://access.redhat.com/security/cve/CVE-2022-3437",[92,86],[95],{"url":106,"sources":107,"tags":108},"http://www.openwall.com/lists/oss-security/2023/02/08/1",[92,86],[109],"Mailing List",{"url":111,"sources":112,"tags":113},"https://security.netapp.com/advisory/ntap-20230216-0008/",[92,86],[],{"url":115,"sources":116,"tags":117},"https://security.gentoo.org/glsa/202309-06",[92,86],[100],{"url":119,"sources":120,"tags":121},"https://security.gentoo.org/glsa/202310-06",[92,86],[100],{"url":123,"sources":124,"tags":125},"https://lists.debian.org/debian-lts-announce/2024/04/msg00015.html",[92,86],[109],[],{"date":128,"score":82,"percentile":129},"2026-06-04",0.72987,[131,135,138,141,144,148,151,154,157,160,163,166,169,172,175,179,182,185,188,191,194,198,201,205,207,211,214,217,220,223,226,229,232,235,237,240,243,246,249,252,255,258,260,263,266,269,272,275,278,280,282,285,288,291,294,297,300,302,304,307,310,313,316,319,321,324,327,330,333,336,339,342,345,347,350,353,356,359,361,364,367,370,373,376,379,381,384,387,391,394],{"date":132,"score":133,"percentile":134},"2025-11-04",0.00525,0.66135,{"date":136,"score":133,"percentile":137},"2025-11-05",0.66112,{"date":139,"score":133,"percentile":140},"2025-11-06",0.66107,{"date":142,"score":133,"percentile":143},"2025-11-07",0.66119,{"date":145,"score":146,"percentile":147},"2025-11-08",0.00654,0.70113,{"date":149,"score":146,"percentile":150},"2025-11-09",0.70104,{"date":152,"score":146,"percentile":153},"2025-11-10",0.70093,{"date":155,"score":146,"percentile":156},"2025-11-11",0.70103,{"date":158,"score":146,"percentile":159},"2025-11-12",0.70126,{"date":161,"score":146,"percentile":162},"2025-11-13",0.70131,{"date":164,"score":146,"percentile":165},"2025-11-14",0.7014,{"date":167,"score":146,"percentile":168},"2025-11-15",0.70139,{"date":170,"score":146,"percentile":171},"2025-11-16",0.70136,{"date":173,"score":146,"percentile":174},"2025-11-17",0.70134,{"date":176,"score":177,"percentile":178},"2025-11-18",0.06671,0.90303,{"date":180,"score":177,"percentile":181},"2025-11-19",0.90308,{"date":183,"score":177,"percentile":184},"2025-11-20",0.90311,{"date":186,"score":146,"percentile":187},"2025-11-21",0.70154,{"date":189,"score":146,"percentile":190},"2025-11-22",0.70144,{"date":192,"score":146,"percentile":193},"2025-11-23",0.70127,{"date":195,"score":196,"percentile":197},"2025-11-24",0.00886,0.74713,{"date":199,"score":196,"percentile":200},"2025-11-25",0.74715,{"date":202,"score":203,"percentile":204},"2025-11-26",0.00678,0.70743,{"date":206,"score":203,"percentile":204},"2025-11-27",{"date":208,"score":209,"percentile":210},"2025-11-28",0.00625,0.69347,{"date":212,"score":209,"percentile":213},"2025-11-29",0.69334,{"date":215,"score":209,"percentile":216},"2025-11-30",0.6933,{"date":218,"score":209,"percentile":219},"2025-12-01",0.6948,{"date":221,"score":209,"percentile":222},"2025-12-02",0.69488,{"date":224,"score":209,"percentile":225},"2025-12-03",0.69486,{"date":227,"score":209,"percentile":228},"2025-12-04",0.69327,{"date":230,"score":209,"percentile":231},"2025-12-05",0.69342,{"date":233,"score":209,"percentile":234},"2025-12-06",0.69345,{"date":236,"score":209,"percentile":231},"2025-12-07",{"date":238,"score":209,"percentile":239},"2025-12-08",0.69346,{"date":241,"score":209,"percentile":242},"2025-12-09",0.69375,{"date":244,"score":209,"percentile":245},"2025-12-10",0.69418,{"date":247,"score":209,"percentile":248},"2025-12-11",0.6944,{"date":250,"score":209,"percentile":251},"2025-12-12",0.69467,{"date":253,"score":209,"percentile":254},"2025-12-13",0.69468,{"date":256,"score":209,"percentile":257},"2025-12-14",0.69471,{"date":259,"score":209,"percentile":254},"2025-12-15",{"date":261,"score":209,"percentile":262},"2025-12-16",0.69476,{"date":264,"score":209,"percentile":265},"2025-12-17",0.6949,{"date":267,"score":209,"percentile":268},"2025-12-18",0.69519,{"date":270,"score":209,"percentile":271},"2025-12-19",0.69536,{"date":273,"score":209,"percentile":274},"2025-12-20",0.69534,{"date":276,"score":209,"percentile":277},"2025-12-21",0.69518,{"date":279,"score":209,"percentile":268},"2025-12-22",{"date":281,"score":209,"percentile":268},"2025-12-23",{"date":283,"score":209,"percentile":284},"2025-12-24",0.69527,{"date":286,"score":209,"percentile":287},"2025-12-25",0.69553,{"date":289,"score":209,"percentile":290},"2025-12-26",0.69552,{"date":292,"score":209,"percentile":293},"2025-12-27",0.69604,{"date":295,"score":209,"percentile":296},"2025-12-28",0.69528,{"date":298,"score":209,"percentile":299},"2025-12-29",0.69525,{"date":301,"score":209,"percentile":271},"2025-12-30",{"date":303,"score":209,"percentile":290},"2025-12-31",{"date":305,"score":209,"percentile":306},"2026-01-01",0.69719,{"date":308,"score":209,"percentile":309},"2026-01-02",0.69712,{"date":311,"score":209,"percentile":312},"2026-01-03",0.69711,{"date":314,"score":209,"percentile":315},"2026-01-04",0.69556,{"date":317,"score":209,"percentile":318},"2026-01-05",0.69542,{"date":320,"score":209,"percentile":290},"2026-01-06",{"date":322,"score":209,"percentile":323},"2026-01-07",0.69565,{"date":325,"score":209,"percentile":326},"2026-01-08",0.69579,{"date":328,"score":209,"percentile":329},"2026-01-09",0.69586,{"date":331,"score":209,"percentile":332},"2026-01-10",0.69585,{"date":334,"score":209,"percentile":335},"2026-01-11",0.69577,{"date":337,"score":209,"percentile":338},"2026-01-12",0.69569,{"date":340,"score":209,"percentile":341},"2026-01-13",0.69567,{"date":343,"score":209,"percentile":344},"2026-01-14",0.69599,{"date":346,"score":209,"percentile":293},"2026-01-15",{"date":348,"score":209,"percentile":349},"2026-01-16",0.6962,{"date":351,"score":209,"percentile":352},"2026-01-17",0.69613,{"date":354,"score":209,"percentile":355},"2026-01-18",0.696,{"date":357,"score":209,"percentile":358},"2026-01-19",0.69591,{"date":360,"score":209,"percentile":355},"2026-01-20",{"date":362,"score":209,"percentile":363},"2026-01-21",0.69608,{"date":365,"score":209,"percentile":366},"2026-01-22",0.69621,{"date":368,"score":209,"percentile":369},"2026-01-23",0.69652,{"date":371,"score":209,"percentile":372},"2026-01-24",0.69657,{"date":374,"score":209,"percentile":375},"2026-01-25",0.69628,{"date":377,"score":209,"percentile":378},"2026-01-26",0.69624,{"date":380,"score":209,"percentile":375},"2026-01-27",{"date":382,"score":209,"percentile":383},"2026-01-28",0.6964,{"date":385,"score":209,"percentile":386},"2026-01-29",0.69637,{"date":388,"score":389,"percentile":390},"2026-01-30",0.00725,0.72104,{"date":392,"score":389,"percentile":393},"2026-01-31",0.72108,{"date":395,"score":389,"percentile":396},"2026-02-01",0.72231,[398,405],{"source":92,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":399,"cvss_v4_0":9},{"baseScore":400,"baseSeverity":401,"vectorString":402,"impactScore":403,"exploitabilityScore":404},4.3,"MEDIUM","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",2.3,7.2,{"source":86,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":406,"cvss_v4_0":9},{"baseScore":84,"baseSeverity":401,"vectorString":87,"impactScore":407,"exploitabilityScore":404},6,[409,419],{"ecosystem":9,"name":410,"vendor":411,"product":410,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":413},"fedora","fedoraproject","o",[414,417],{"version":415,"is_range":80,"range_type":416,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"36","cpe",{"version":418,"is_range":80,"range_type":416,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"37",{"ecosystem":9,"name":420,"vendor":420,"product":420,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":422},"samba","a",[423,430,434],{"version":424,"is_range":425,"range_type":416,"version_start":426,"version_start_type":427,"version_end":428,"version_end_type":429,"fixed_in":9},"gte4.0.0_lt4.15.11",true,"4.0.0","including","4.15.11","excluding",{"version":431,"is_range":425,"range_type":416,"version_start":432,"version_start_type":427,"version_end":433,"version_end_type":429,"fixed_in":9},"gte4.16.0_lt4.16.6","4.16.0","4.16.6",{"version":435,"is_range":425,"range_type":416,"version_start":436,"version_start_type":427,"version_end":437,"version_end_type":429,"fixed_in":9},"gte4.17.0_lt4.17.2","4.17.0","4.17.2"]