CVE-2022-3219

ADVISORY - nist

Summary

GnuPG can be made to spin on a relatively small input by (for example) crafting a public key with thousands of signatures attached, compressed down to just a few KB.

EPSS Score⁠: 0.00046 (0.181)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-787⁠

Out-of-bounds Write

ADVISORY - redhat

CWE-787⁠

Out-of-bounds Write

Impacted images

Advisories

NIST

CREATED

2 years ago

UPDATED

1 year ago

ADVISORY IDCVE-2022-3219⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-787⁠

CVSS SCORE

3.3low

Debian

CREATED

2 years ago

UPDATED

16 hours ago

ADVISORY IDCVE-2022-3219⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

2 years ago

UPDATED

4 months ago

ADVISORY IDCVE-2022-3219⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

3.3low

Red Hat

CREATED

2 years ago

UPDATED

1 year ago

ADVISORY IDCVE-2022-3219⁠

EXPLOITABILITY SCORE

2.5

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-787⁠

CVSS SCORE

6.2low

Chainguard

CREATED

1 year ago

UPDATED

1 year ago

ADVISORY ID

CGA-qv69-x9jf-vm7x

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY