[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-4304":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":27,"downstream":28,"duplicates":113,"related":114,"reserved_at":9,"published_at":148,"modified_at":149,"state":150,"summary":151,"references_raw":160,"kevs":191,"epss":192,"epss_history":195,"metrics":466,"affected":476},"CVE-2022-4304","A timing based side channel exists in the OpenSSL RSA Decryption implementation\nwhich could be sufficient to recover a plaintext across a network in a\nBleichenbacher style attack. To achieve a successful decryption an attacker\nwould have to be able to send a very large number of trial messages for\ndecryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5,\nRSA-OEAP and RSASVE.\n\nFor example, in a TLS connection, RSA is commonly used by a client to send an\nencrypted pre-master secret to the server. An attacker that had observed a\ngenuine connection between a client and a server could use this flaw to send\ntrial messages to the server and record the time taken to process them. After a\nsufficiently large number of messages the attacker could recover the pre-master\nsecret used for the original connection and thus be able to decrypt the\napplication data sent over that connection.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-203","Observable Discrepancy","The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.","weakness","Incomplete","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-189","Black Box Reverse Engineering",[],[],[25,26],"GHSA-p52g-cm5j-mjv4","RUSTSEC-2023-0007",[],[29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111],{"_key":30},"ALPINE-CVE-2022-4304",{"_key":32},"SUSE-SU-2023:0581-1",{"_key":34},"SUSE-SU-2023:0684-1",{"_key":36},"SUSE-SU-2023:2634-1",{"_key":38},"SUSE-SU-2023:3096-1",{"_key":40},"RHSA-2023:1405",{"_key":42},"RHSA-2023:2932",{"_key":44},"RHSA-2023:3408",{"_key":46},"RHSA-2023:4128",{"_key":48},"SUSE-SU-2023:0305-2",{"_key":50},"SUSE-SU-2023:0306-1",{"_key":52},"SUSE-SU-2023:0307-1",{"_key":54},"SUSE-SU-2023:0308-1",{"_key":56},"SUSE-SU-2023:0309-1",{"_key":58},"SUSE-SU-2023:0584-1",{"_key":60},"SUSE-SU-2023:2622-1",{"_key":62},"SUSE-SU-2023:2623-1",{"_key":64},"SUSE-SU-2023:2624-1",{"_key":66},"SUSE-SU-2023:3179-1",{"_key":68},"SUSE-SU-2023:0305-1",{"_key":70},"SUSE-SU-2023:0310-1",{"_key":72},"SUSE-SU-2023:0311-1",{"_key":74},"SUSE-SU-2023:0312-1",{"_key":76},"SUSE-SU-2023:2633-1",{"_key":78},"SUSE-SU-2023:2648-1",{"_key":80},"SUSE-SU-2023:29171-1",{"_key":82},"OPENSUSE-SU-2024:12687-1",{"_key":84},"OPENSUSE-SU-2024:12688-1",{"_key":86},"OPENSUSE-SU-2024:12716-1",{"_key":88},"DLA-3325-1",{"_key":90},"DSA-5343-1",{"_key":92},"RHSA-2023:3420",{"_key":94},"RHSA-2023:0946",{"_key":96},"RHSA-2023:1199",{"_key":98},"RHSA-2023:3354",{"_key":100},"MGASA-2023-0130",{"_key":102},"USN-5844-1",{"_key":104},"UBUNTU-CVE-2022-4304",{"_key":106},"USN-6564-1",{"_key":108},"DEBIAN-CVE-2022-4304",{"_key":110},"RHSA-2023:2165",{"_key":112},"USN-7894-1",[],[115,116,117,118,119,120,121,122,123,124,125,126,127,128,129,130,131,132,133,134,135,136,137,138,139,140,142,144,146],{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":48},{"_key":100},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":62},{"_key":64},{"_key":66},{"_key":68},{"_key":70},{"_key":72},{"_key":74},{"_key":76},{"_key":78},{"_key":80},{"_key":82},{"_key":84},{"_key":86},{"_key":141},"CGA-5M9G-JW9V-2CQ5",{"_key":143},"CGA-HWQW-XWP5-XGXG",{"_key":145},"CGA-V559-F663-G3FR",{"_key":147},"CGA-XR7R-GJ78-RRCF","2023-02-08T19:04:28.890Z","2025-11-04T19:14:12.161Z","Modified",{"cisa_kev":152,"cisa_ransomware":152,"cisa_vendor":9,"epss_severity":153,"epss_score":154,"severity":155,"severity_score":156,"severity_version":157,"severity_source":158,"severity_vector":159,"severity_status":150},false,"low",0.00224,"medium",5.9,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",[161,169,173,177,182,186],{"url":162,"sources":163,"tags":166},"https://www.openssl.org/news/secadv/20230207.txt",[158,164,165],"nvd","osv_crates.io",[167,168],"Vendor Advisory","WEB",{"url":170,"sources":171,"tags":172},"https://security.gentoo.org/glsa/202402-08",[158,164,165],[168],{"url":174,"sources":175,"tags":176},"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0003",[158,164,165],[168],{"url":178,"sources":179,"tags":180},"https://nvd.nist.gov/vuln/detail/CVE-2022-4304",[165],[181],"Advisory",{"url":183,"sources":184,"tags":185},"https://rustsec.org/advisories/RUSTSEC-2023-0007.html",[165],[168,181],{"url":187,"sources":188,"tags":189},"https://crates.io/crates/openssl-src",[165],[190],"PACKAGE",[],{"date":193,"score":154,"percentile":194},"2026-06-04",0.45151,[196,200,204,207,210,213,216,219,222,225,228,231,234,237,240,244,247,250,252,255,258,261,264,266,269,272,275,278,282,285,288,290,293,296,299,301,304,307,310,313,316,319,322,325,328,332,335,338,341,344,347,350,353,356,360,363,366,369,372,376,379,382,385,388,391,394,397,400,402,405,408,411,414,416,419,422,425,428,431,434,437,440,443,446,449,452,455,458,460,463],{"date":197,"score":198,"percentile":199},"2025-11-04",0.0023,0.45758,{"date":201,"score":202,"percentile":203},"2025-11-05",0.00255,0.48745,{"date":205,"score":202,"percentile":206},"2025-11-06",0.48759,{"date":208,"score":202,"percentile":209},"2025-11-07",0.48787,{"date":211,"score":202,"percentile":212},"2025-11-08",0.48786,{"date":214,"score":202,"percentile":215},"2025-11-09",0.48764,{"date":217,"score":202,"percentile":218},"2025-11-10",0.48737,{"date":220,"score":202,"percentile":221},"2025-11-11",0.48752,{"date":223,"score":202,"percentile":224},"2025-11-12",0.48775,{"date":226,"score":202,"percentile":227},"2025-11-13",0.48778,{"date":229,"score":202,"percentile":230},"2025-11-14",0.48791,{"date":232,"score":202,"percentile":233},"2025-11-15",0.48785,{"date":235,"score":202,"percentile":236},"2025-11-16",0.4877,{"date":238,"score":202,"percentile":239},"2025-11-17",0.48743,{"date":241,"score":242,"percentile":243},"2025-11-18",0.02243,0.832,{"date":245,"score":242,"percentile":246},"2025-11-19",0.83201,{"date":248,"score":242,"percentile":249},"2025-11-20",0.83206,{"date":251,"score":202,"percentile":218},"2025-11-21",{"date":253,"score":202,"percentile":254},"2025-11-22",0.48734,{"date":256,"score":202,"percentile":257},"2025-11-23",0.48702,{"date":259,"score":202,"percentile":260},"2025-11-24",0.48688,{"date":262,"score":202,"percentile":263},"2025-11-25",0.48689,{"date":265,"score":202,"percentile":260},"2025-11-26",{"date":267,"score":202,"percentile":268},"2025-11-27",0.48694,{"date":270,"score":202,"percentile":271},"2025-11-28",0.48664,{"date":273,"score":202,"percentile":274},"2025-11-29",0.48644,{"date":276,"score":202,"percentile":277},"2025-11-30",0.48633,{"date":279,"score":280,"percentile":281},"2025-12-01",0.00196,0.41802,{"date":283,"score":280,"percentile":284},"2025-12-02",0.41811,{"date":286,"score":280,"percentile":287},"2025-12-03",0.41812,{"date":289,"score":202,"percentile":277},"2025-12-04",{"date":291,"score":202,"percentile":292},"2025-12-05",0.48653,{"date":294,"score":202,"percentile":295},"2025-12-06",0.48655,{"date":297,"score":202,"percentile":298},"2025-12-07",0.4864,{"date":300,"score":202,"percentile":274},"2025-12-08",{"date":302,"score":202,"percentile":303},"2025-12-09",0.48666,{"date":305,"score":202,"percentile":306},"2025-12-10",0.48729,{"date":308,"score":202,"percentile":309},"2025-12-11",0.48746,{"date":311,"score":202,"percentile":312},"2025-12-12",0.48769,{"date":314,"score":202,"percentile":315},"2025-12-13",0.48753,{"date":317,"score":202,"percentile":318},"2025-12-14",0.48741,{"date":320,"score":202,"percentile":321},"2025-12-15",0.48725,{"date":323,"score":202,"percentile":324},"2025-12-16",0.48733,{"date":326,"score":202,"percentile":327},"2025-12-17",0.48755,{"date":329,"score":330,"percentile":331},"2025-12-18",0.00263,0.49465,{"date":333,"score":330,"percentile":334},"2025-12-19",0.49472,{"date":336,"score":330,"percentile":337},"2025-12-20",0.49454,{"date":339,"score":330,"percentile":340},"2025-12-21",0.49425,{"date":342,"score":330,"percentile":343},"2025-12-22",0.49413,{"date":345,"score":330,"percentile":346},"2025-12-23",0.49409,{"date":348,"score":330,"percentile":349},"2025-12-24",0.49421,{"date":351,"score":330,"percentile":352},"2025-12-25",0.49473,{"date":354,"score":330,"percentile":355},"2025-12-26",0.49462,{"date":357,"score":358,"percentile":359},"2025-12-27",0.002,0.42306,{"date":361,"score":202,"percentile":362},"2025-12-28",0.4872,{"date":364,"score":202,"percentile":365},"2025-12-29",0.48701,{"date":367,"score":202,"percentile":368},"2025-12-30",0.48696,{"date":370,"score":202,"percentile":371},"2025-12-31",0.48735,{"date":373,"score":374,"percentile":375},"2026-01-01",0.00209,0.4355,{"date":377,"score":374,"percentile":378},"2026-01-02",0.43524,{"date":380,"score":374,"percentile":381},"2026-01-03",0.43515,{"date":383,"score":202,"percentile":384},"2026-01-04",0.4869,{"date":386,"score":202,"percentile":387},"2026-01-05",0.48675,{"date":389,"score":202,"percentile":390},"2026-01-06",0.48681,{"date":392,"score":202,"percentile":393},"2026-01-07",0.48698,{"date":395,"score":202,"percentile":396},"2026-01-08",0.48721,{"date":398,"score":202,"percentile":399},"2026-01-09",0.48697,{"date":401,"score":202,"percentile":384},"2026-01-10",{"date":403,"score":202,"percentile":404},"2026-01-11",0.48673,{"date":406,"score":202,"percentile":407},"2026-01-12",0.4863,{"date":409,"score":202,"percentile":410},"2026-01-13",0.48605,{"date":412,"score":202,"percentile":413},"2026-01-14",0.4865,{"date":415,"score":202,"percentile":413},"2026-01-15",{"date":417,"score":202,"percentile":418},"2026-01-16",0.48674,{"date":420,"score":202,"percentile":421},"2026-01-17",0.48648,{"date":423,"score":330,"percentile":424},"2026-01-18",0.49313,{"date":426,"score":330,"percentile":427},"2026-01-19",0.49291,{"date":429,"score":330,"percentile":430},"2026-01-20",0.49293,{"date":432,"score":330,"percentile":433},"2026-01-21",0.49292,{"date":435,"score":330,"percentile":436},"2026-01-22",0.49298,{"date":438,"score":330,"percentile":439},"2026-01-23",0.49347,{"date":441,"score":330,"percentile":442},"2026-01-24",0.49354,{"date":444,"score":330,"percentile":445},"2026-01-25",0.49305,{"date":447,"score":202,"percentile":448},"2026-01-26",0.4857,{"date":450,"score":202,"percentile":451},"2026-01-27",0.48576,{"date":453,"score":202,"percentile":454},"2026-01-28",0.48587,{"date":456,"score":202,"percentile":457},"2026-01-29",0.48578,{"date":459,"score":202,"percentile":454},"2026-01-30",{"date":461,"score":202,"percentile":462},"2026-01-31",0.48595,{"date":464,"score":374,"percentile":465},"2026-02-01",0.43319,[467,472,474],{"source":158,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":468,"cvss_v4_0":9},{"baseScore":156,"baseSeverity":469,"vectorString":159,"impactScore":470,"exploitabilityScore":471},"MEDIUM",6,5.6,{"source":164,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":473,"cvss_v4_0":9},{"baseScore":156,"baseSeverity":469,"vectorString":159,"impactScore":470,"exploitabilityScore":471},{"source":165,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":475,"cvss_v4_0":9},{"baseScore":156,"baseSeverity":9,"vectorString":159,"impactScore":470,"exploitabilityScore":471},[477,493,509,518,524],{"ecosystem":478,"name":479,"vendor":478,"product":479,"cpe_part":9,"purl_type":480,"purl_namespace":9,"purl_name":479,"source":9,"versions":481},"Crates.Io","openssl-src","cargo",[482,488],{"version":483,"is_range":484,"range_type":485,"version_start":9,"version_start_type":9,"version_end":486,"version_end_type":487,"fixed_in":9},"lt111_25_0",true,"semver","111.25.0","excluding",{"version":489,"is_range":484,"range_type":485,"version_start":490,"version_start_type":491,"version_end":492,"version_end_type":487,"fixed_in":9},"gte300_0_0_lt300_0_12","300.0.0","including","300.0.12",{"ecosystem":9,"name":494,"vendor":9,"product":494,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":495},"OpenSSL",[496,501,505],{"version":497,"is_range":484,"range_type":498,"version_start":499,"version_start_type":491,"version_end":500,"version_end_type":487,"fixed_in":9},"gte1.0.2_lt1.0.2zg","cpe","1.0.2","1.0.2zg",{"version":502,"is_range":484,"range_type":498,"version_start":503,"version_start_type":491,"version_end":504,"version_end_type":487,"fixed_in":9},"gte1.1.1_lt1.1.1t","1.1.1","1.1.1t",{"version":506,"is_range":484,"range_type":498,"version_start":507,"version_start_type":491,"version_end":508,"version_end_type":487,"fixed_in":9},"gte3.0.0_lt3.0.8","3.0.0","3.0.8",{"ecosystem":9,"name":510,"vendor":511,"product":512,"cpe_part":513,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":514},"endpoint security","stormshield","endpoint_security","a",[515],{"version":516,"is_range":484,"range_type":498,"version_start":9,"version_start_type":9,"version_end":517,"version_end_type":487,"fixed_in":9},"lt7.2.40","7.2.40",{"ecosystem":9,"name":519,"vendor":511,"product":519,"cpe_part":513,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":520},"sslvpn",[521],{"version":522,"is_range":484,"range_type":498,"version_start":9,"version_start_type":9,"version_end":523,"version_end_type":487,"fixed_in":9},"lt3.2.1","3.2.1",{"ecosystem":9,"name":525,"vendor":511,"product":526,"cpe_part":513,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":527},"StormShield Network Security","stormshield network security",[528,532,536,540,544],{"version":529,"is_range":484,"range_type":498,"version_start":530,"version_start_type":491,"version_end":531,"version_end_type":487,"fixed_in":9},"gte2.7.0_lt2.7.11","2.7.0","2.7.11",{"version":533,"is_range":484,"range_type":498,"version_start":534,"version_start_type":491,"version_end":535,"version_end_type":487,"fixed_in":9},"gte2.8.0_lt3.7.34","2.8.0","3.7.34",{"version":537,"is_range":484,"range_type":498,"version_start":538,"version_start_type":491,"version_end":539,"version_end_type":487,"fixed_in":9},"gte3.8.0_lt3.11.22","3.8.0","3.11.22",{"version":541,"is_range":484,"range_type":498,"version_start":542,"version_start_type":491,"version_end":543,"version_end_type":487,"fixed_in":9},"gte4.0.0_lt4.3.16","4.0.0","4.3.16",{"version":545,"is_range":484,"range_type":498,"version_start":546,"version_start_type":491,"version_end":547,"version_end_type":487,"fixed_in":9},"gte4.4.0_lt4.6.3","4.4.0","4.6.3"]