[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-4203":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":27,"downstream":28,"duplicates":47,"related":48,"reserved_at":9,"published_at":60,"modified_at":61,"state":62,"summary":63,"references_raw":72,"kevs":109,"epss":110,"epss_history":113,"metrics":372,"affected":386},"CVE-2022-4203","A read buffer overrun can be triggered in X.509 certificate verification,\nspecifically in name constraint checking. Note that this occurs\nafter certificate chain signature verification and requires either a\nCA to have signed the malicious certificate or for the application to\ncontinue certificate verification despite failure to construct a path\nto a trusted issuer.\n\nThe read buffer overrun might result in a crash which could lead to\na denial of service attack. In theory it could also result in the disclosure\nof private memory contents (such as private keys, or sensitive plaintext)\nalthough we are not aware of any working exploit leading to memory\ncontents disclosure as of the time of release of this advisory.\n\nIn a TLS client, this can be triggered by connecting to a malicious\nserver. In a TLS server, this can be triggered if the server requests\nclient authentication and a malicious client connects.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[],[25,26],"GHSA-w67w-mw4j-8qrv","RUSTSEC-2023-0008",[],[29,31,33,35,37,39,41,43,45],{"_key":30},"ALPINE-CVE-2022-4203",{"_key":32},"SUSE-SU-2023:0312-1",{"_key":34},"OPENSUSE-SU-2024:12716-1",{"_key":36},"RHSA-2023:0946",{"_key":38},"RHSA-2023:1199",{"_key":40},"MGASA-2023-0130",{"_key":42},"UBUNTU-CVE-2022-4203",{"_key":44},"USN-5844-1",{"_key":46},"DEBIAN-CVE-2022-4203",[],[49,50,51,52,54,56,58],{"_key":40},{"_key":32},{"_key":34},{"_key":53},"CGA-3GFC-9462-MC8M",{"_key":55},"CGA-6432-89H5-CXWC",{"_key":57},"CGA-7QVP-HMGW-693V",{"_key":59},"CGA-R8CV-Q887-85M7","2023-02-24T14:53:08.485Z","2025-11-04T19:14:06.670Z","Modified",{"cisa_kev":64,"cisa_ransomware":64,"cisa_vendor":9,"epss_severity":65,"epss_score":66,"severity":67,"severity_score":68,"severity_version":69,"severity_source":70,"severity_vector":71,"severity_status":62},false,"low",0.00495,"medium",4.9,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",[73,81,87,91,95,100,104],{"url":74,"sources":75,"tags":78},"https://www.openssl.org/news/secadv/20230207.txt",[70,76,77],"nvd","osv_crates.io",[79,80],"Vendor Advisory","WEB",{"url":82,"sources":83,"tags":84},"https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c927a3492698c254637da836762f9b1f86cffabc",[70,76,77],[85,86,80],"Patch","Mailing List",{"url":88,"sources":89,"tags":90},"https://security.gentoo.org/glsa/202402-08",[70,76,77],[80],{"url":92,"sources":93,"tags":94},"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0003",[70,76,77],[80],{"url":96,"sources":97,"tags":98},"https://nvd.nist.gov/vuln/detail/CVE-2022-4203",[77],[99],"Advisory",{"url":101,"sources":102,"tags":103},"https://rustsec.org/advisories/RUSTSEC-2023-0008.html",[77],[80,99],{"url":105,"sources":106,"tags":107},"https://crates.io/crates/openssl-src",[77],[108],"PACKAGE",[],{"date":111,"score":66,"percentile":112},"2026-06-04",0.66126,[114,118,121,123,126,129,131,134,137,140,143,146,149,152,155,159,162,165,168,171,174,177,179,181,183,185,188,190,193,196,199,201,204,207,210,213,216,219,222,225,228,231,234,237,240,243,246,249,253,256,258,261,264,266,270,273,276,279,282,285,288,290,292,295,298,301,304,307,309,311,314,317,320,323,326,329,332,335,337,339,342,345,348,351,354,357,360,363,366,369],{"date":115,"score":116,"percentile":117},"2025-11-04",0.00443,0.62519,{"date":119,"score":116,"percentile":120},"2025-11-05",0.62508,{"date":122,"score":116,"percentile":117},"2025-11-06",{"date":124,"score":116,"percentile":125},"2025-11-07",0.62535,{"date":127,"score":116,"percentile":128},"2025-11-08",0.62541,{"date":130,"score":116,"percentile":125},"2025-11-09",{"date":132,"score":116,"percentile":133},"2025-11-10",0.62518,{"date":135,"score":116,"percentile":136},"2025-11-11",0.6253,{"date":138,"score":116,"percentile":139},"2025-11-12",0.62553,{"date":141,"score":116,"percentile":142},"2025-11-13",0.62559,{"date":144,"score":116,"percentile":145},"2025-11-14",0.62569,{"date":147,"score":116,"percentile":148},"2025-11-15",0.6256,{"date":150,"score":116,"percentile":151},"2025-11-16",0.62551,{"date":153,"score":116,"percentile":154},"2025-11-17",0.62555,{"date":156,"score":157,"percentile":158},"2025-11-18",0.01271,0.77726,{"date":160,"score":157,"percentile":161},"2025-11-19",0.77733,{"date":163,"score":157,"percentile":164},"2025-11-20",0.77741,{"date":166,"score":116,"percentile":167},"2025-11-21",0.62564,{"date":169,"score":116,"percentile":170},"2025-11-22",0.62574,{"date":172,"score":116,"percentile":173},"2025-11-23",0.62552,{"date":175,"score":116,"percentile":176},"2025-11-24",0.62546,{"date":178,"score":116,"percentile":151},"2025-11-25",{"date":180,"score":116,"percentile":154},"2025-11-26",{"date":182,"score":116,"percentile":148},"2025-11-27",{"date":184,"score":116,"percentile":128},"2025-11-28",{"date":186,"score":116,"percentile":187},"2025-11-29",0.62516,{"date":189,"score":116,"percentile":120},"2025-11-30",{"date":191,"score":116,"percentile":192},"2025-12-01",0.62672,{"date":194,"score":116,"percentile":195},"2025-12-02",0.62687,{"date":197,"score":116,"percentile":198},"2025-12-03",0.62691,{"date":200,"score":116,"percentile":187},"2025-12-04",{"date":202,"score":116,"percentile":203},"2025-12-05",0.62527,{"date":205,"score":116,"percentile":206},"2025-12-06",0.62529,{"date":208,"score":116,"percentile":209},"2025-12-07",0.6252,{"date":211,"score":116,"percentile":212},"2025-12-08",0.62528,{"date":214,"score":116,"percentile":215},"2025-12-09",0.62563,{"date":217,"score":116,"percentile":218},"2025-12-10",0.62606,{"date":220,"score":116,"percentile":221},"2025-12-11",0.62623,{"date":223,"score":116,"percentile":224},"2025-12-12",0.62649,{"date":226,"score":116,"percentile":227},"2025-12-13",0.62655,{"date":229,"score":116,"percentile":230},"2025-12-14",0.62654,{"date":232,"score":116,"percentile":233},"2025-12-15",0.62641,{"date":235,"score":116,"percentile":236},"2025-12-16",0.62657,{"date":238,"score":116,"percentile":239},"2025-12-17",0.62669,{"date":241,"score":116,"percentile":242},"2025-12-18",0.62707,{"date":244,"score":116,"percentile":245},"2025-12-19",0.62721,{"date":247,"score":116,"percentile":248},"2025-12-20",0.62722,{"date":250,"score":251,"percentile":252},"2025-12-21",0.00642,0.69965,{"date":254,"score":251,"percentile":255},"2025-12-22",0.6996,{"date":257,"score":251,"percentile":255},"2025-12-23",{"date":259,"score":251,"percentile":260},"2025-12-24",0.69969,{"date":262,"score":251,"percentile":263},"2025-12-25",0.69994,{"date":265,"score":251,"percentile":263},"2025-12-26",{"date":267,"score":268,"percentile":269},"2025-12-27",0.00516,0.66058,{"date":271,"score":251,"percentile":272},"2025-12-28",0.69967,{"date":274,"score":251,"percentile":275},"2025-12-29",0.69964,{"date":277,"score":251,"percentile":278},"2025-12-30",0.69977,{"date":280,"score":251,"percentile":281},"2025-12-31",0.69996,{"date":283,"score":251,"percentile":284},"2026-01-01",0.70152,{"date":286,"score":251,"percentile":287},"2026-01-02",0.70145,{"date":289,"score":251,"percentile":287},"2026-01-03",{"date":291,"score":251,"percentile":263},"2026-01-04",{"date":293,"score":251,"percentile":294},"2026-01-05",0.69986,{"date":296,"score":251,"percentile":297},"2026-01-06",0.69993,{"date":299,"score":251,"percentile":300},"2026-01-07",0.70007,{"date":302,"score":251,"percentile":303},"2026-01-08",0.70021,{"date":305,"score":251,"percentile":306},"2026-01-09",0.70027,{"date":308,"score":251,"percentile":306},"2026-01-10",{"date":310,"score":251,"percentile":303},"2026-01-11",{"date":312,"score":251,"percentile":313},"2026-01-12",0.70016,{"date":315,"score":251,"percentile":316},"2026-01-13",0.70013,{"date":318,"score":251,"percentile":319},"2026-01-14",0.70043,{"date":321,"score":251,"percentile":322},"2026-01-15",0.70049,{"date":324,"score":251,"percentile":325},"2026-01-16",0.70067,{"date":327,"score":251,"percentile":328},"2026-01-17",0.7006,{"date":330,"score":251,"percentile":331},"2026-01-18",0.7004,{"date":333,"score":251,"percentile":334},"2026-01-19",0.70032,{"date":336,"score":251,"percentile":331},"2026-01-20",{"date":338,"score":251,"percentile":319},"2026-01-21",{"date":340,"score":251,"percentile":341},"2026-01-22",0.70056,{"date":343,"score":251,"percentile":344},"2026-01-23",0.70088,{"date":346,"score":251,"percentile":347},"2026-01-24",0.70093,{"date":349,"score":251,"percentile":350},"2026-01-25",0.70064,{"date":352,"score":251,"percentile":353},"2026-01-26",0.70059,{"date":355,"score":251,"percentile":356},"2026-01-27",0.70063,{"date":358,"score":251,"percentile":359},"2026-01-28",0.70076,{"date":361,"score":251,"percentile":362},"2026-01-29",0.70074,{"date":364,"score":251,"percentile":365},"2026-01-30",0.70082,{"date":367,"score":251,"percentile":368},"2026-01-31",0.70087,{"date":370,"score":251,"percentile":371},"2026-02-01",0.7022,[373,378,380],{"source":70,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":374,"cvss_v4_0":9},{"baseScore":68,"baseSeverity":375,"vectorString":71,"impactScore":376,"exploitabilityScore":377},"MEDIUM",6,3.1,{"source":76,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":379,"cvss_v4_0":9},{"baseScore":68,"baseSeverity":375,"vectorString":71,"impactScore":376,"exploitabilityScore":377},{"source":77,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":381,"cvss_v4_0":9},{"baseScore":382,"baseSeverity":9,"vectorString":383,"impactScore":384,"exploitabilityScore":385},9.1,"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",8.7,10,[387,400],{"ecosystem":388,"name":389,"vendor":388,"product":389,"cpe_part":9,"purl_type":390,"purl_namespace":9,"purl_name":389,"source":9,"versions":391},"Crates.Io","openssl-src","cargo",[392],{"version":393,"is_range":394,"range_type":395,"version_start":396,"version_start_type":397,"version_end":398,"version_end_type":399,"fixed_in":9},"gte300_0_0_lt300_0_12",true,"semver","300.0.0","including","300.0.12","excluding",{"ecosystem":9,"name":401,"vendor":9,"product":401,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":402},"OpenSSL",[403],{"version":404,"is_range":394,"range_type":405,"version_start":406,"version_start_type":397,"version_end":407,"version_end_type":399,"fixed_in":9},"gte3.0.0_lt3.0.8","cpe","3.0.0","3.0.8"]