CVE-2022-48521
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-48521
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely on Authentication-Results from OpenDKIM will treat the message as having a valid DKIM signature when in fact it has none.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenDKIM 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenDKIM是OpenDKIM组织的一个基于C语言的DKIM发件人身份验证系统的软件 OpenDKIM 2.10.3 版本、 2.11.x 至 2.11.0-Beta2版本存在安全漏洞,该漏洞源于在删除伪造的 Authentication-Results 标头字段时,它无法跟踪序数,使得远程攻击者可以使用发件人地址制作电子邮件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2022-48521
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-48521
请登录查看更多情报信息。
Same Patch Batch · n/a · 2023-07-11 · 24 CVEs total
| CVE-2023-3269 | 7.8 HIGH | Distros-[dirtyvma] privilege escalation via non-rcu-protected vma traversal |
| CVE-2023-3354 | 7.5 HIGH | Improper i/o watch removal in tls handshake can lead to remote unauthenticated denial of s |
| CVE-2023-1672 | 5.3 MEDIUM | Race condition exists in the key generation and rotation functionality |
| CVE-2023-37174 | GPAC 安全漏洞 | |
| CVE-2023-37765 | GPAC 安全漏洞 | |
| CVE-2023-37766 | GPAC 安全漏洞 | |
| CVE-2023-37767 | GPAC 安全漏洞 | |
| CVE-2023-29984 | Brother MFPs 代码问题漏洞 | |
| CVE-2023-26861 | PrestaShop SQL注入漏洞 | |
| CVE-2023-37596 | Issabel PBX 跨站请求伪造漏洞 | |
| CVE-2023-37597 | Issabel PBX 跨站请求伪造漏洞 | |
| CVE-2020-20118 | Avast AntiVirus 安全漏洞 | |
| CVE-2023-36163 | IP-DOT BuildaGate 跨站脚本漏洞 | |
| CVE-2023-37656 | WebsiteGuide 代码问题漏洞 | |
| CVE-2023-31818 | Marukyu Line 安全漏洞 | |
| CVE-2023-36293 | WManager SQL注入漏洞 | |
| CVE-2023-37657 | TwoNav 跨站脚本漏洞 | |
| CVE-2023-37658 | fastposter 跨站脚本漏洞 | |
| CVE-2023-37659 | xalpha 代码注入漏洞 | |
| CVE-2023-34561 | RobTop Games Geometry Dash 安全漏洞 |
Showing top 20 of 24 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2022-48521
No comments yet