Exposure of OpenSSL
Web server extensions169
exposure score
71,969
sites use
0
exploited
8
critical
CVEs
152 resultsCVE-2022-2068CRITICALThe c_rehash script allows command injectionEPSS 95.8%CVE-2022-3786HIGHX.509 Email Address Variable Length Buffer OverflowEPSS 91.2%CVE-2022-3602HIGHX.509 Email Address 4-byte Buffer OverflowEPSS 89.8%CVE-2021-3711—SM2 Decryption Buffer OverflowEPSS 87.8%CVE-2022-1292CRITICALThe c_rehash script allows command injectionEPSS 83.6%CVE-2017-3737—OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an "error state" mechanism. The intent was that if a fatal error occurred during a hEPSS 78.7%CVE-2023-2650MEDIUMPossible DoS translating ASN.1 object identifiersEPSS 77.9%CVE-2022-0778HIGHInfinite loop in BN_mod_sqrt() reachable when parsing certificatesEPSS 70.6%CVE-2024-6119HIGHPossible denial of service in X.509 name checksEPSS 66.6%CVE-2021-3449—NULL pointer deref in signature_algorithms processingEPSS 63.5%CVE-2023-0286HIGHX.400 address type confusion in X.509 GeneralNameEPSS 59.5%CVE-2017-3731—Truncated packet could crash via OOB readEPSS 57.6%CVE-2017-3730—Bad (EC)DHE parameters cause a client crashEPSS 55.3%CVE-2024-2511MEDIUMUnbounded memory growth with session handling in TLSv1.3EPSS 54.0%CVE-2020-1967—Segmentation fault in SSL_check_chainEPSS 53.3%CVE-2021-23840HIGHInteger overflow in CipherUpdateEPSS 50.7%CVE-2021-3712HIGHRead buffer overruns processing ASN.1 stringsEPSS 50.4%CVE-2021-4044—Invalid handling of X509_verify_cert() internal errors in libsslEPSS 50.1%CVE-2018-0732—Client DoS due to large DH parameterEPSS 49.3%CVE-2025-15467HIGHStack buffer overflow in CMS (Auth)EnvelopedData parsingEPSS 48.7%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →