Vulnerability Details CVE-2022-43705
In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introduced in Botan 1.11.34 (November 2016).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.7%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2022-43705
-
cpe:2.3:a:botan_project:botan:1.11.34
-
cpe:2.3:a:botan_project:botan:2.0.0
-
cpe:2.3:a:botan_project:botan:2.0.1
-
cpe:2.3:a:botan_project:botan:2.1.0
-
cpe:2.3:a:botan_project:botan:2.10.0
-
cpe:2.3:a:botan_project:botan:2.11.0
-
cpe:2.3:a:botan_project:botan:2.12.0
-
cpe:2.3:a:botan_project:botan:2.12.1
-
cpe:2.3:a:botan_project:botan:2.13.0
-
cpe:2.3:a:botan_project:botan:2.14.0
-
cpe:2.3:a:botan_project:botan:2.15.0
-
cpe:2.3:a:botan_project:botan:2.16.0
-
cpe:2.3:a:botan_project:botan:2.17.0
-
cpe:2.3:a:botan_project:botan:2.17.1
-
cpe:2.3:a:botan_project:botan:2.17.2
-
cpe:2.3:a:botan_project:botan:2.17.3
-
cpe:2.3:a:botan_project:botan:2.2.0
-
cpe:2.3:a:botan_project:botan:2.3.0
-
cpe:2.3:a:botan_project:botan:2.4.0
-
cpe:2.3:a:botan_project:botan:2.5.0
-
cpe:2.3:a:botan_project:botan:2.6.0
-
cpe:2.3:a:botan_project:botan:2.7.0
-
cpe:2.3:a:botan_project:botan:2.8.0
-
cpe:2.3:a:botan_project:botan:2.9.0