Multiple vulnerabilities in Microsoft Open Source Software

Description

Multiple vulnerabilities were found in Microsoft Open Source Software. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Heap buffer overflow vulnerability in X.509 certificate verification can be exploited to cause denial of service.
2. Heap buffer overflow vulnerability in X.509 certificate verification can be exploited to cause denial of service or execute arbitrary code.

Original advisories

• CVE-2022-3786

• CVE-2022-3602

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

• vcpkg

CVE list

• CVE-2022-3786
  critical
• CVE-2022-3602
  critical

KB list

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com