CVE Vulnerability

CVE-2022-38725

An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog input that is mishandled by the tcp or network function. syslog-ng Premium Edition 7.0.30 and syslog-ng Store Box 6.10.0 are also affected.

7.5 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://lists.balabit.hu/pipermail/syslog-ng/ Third Party Advisory
https://github.com/syslog-ng/syslog-ng/security/advisories/GHSA-7932-4fc6-pvmc Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J3TZ7U2GQTAHVHJXSSEHQS5D2Q5T6SZB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QU36HCM3VZYANUYFC6XFYEYJEKQPA2Q7/
Configurations

Configuration 1

cpe:2.3:a:oneidentity:syslog-ng_store_box:*:*:*:*:lts:*:*:*
cpe:2.3:a:oneidentity:syslog-ng_store_box:*:*:*:*:-:*:*:*
cpe:2.3:a:oneidentity:syslog-ng:*:*:*:*:premium:*:*:*
cpe:2.3:a:oneidentity:syslog-ng:*:*:*:*:-:*:*:*
Information

Published : 2023-01-23 04:15

Updated : 2023-02-15 03:15

NVD link : CVE-2022-38725

Mitre link : CVE-2022-38725

Products Affected
No products.
CWE
CWE-190