Find Devices Potentially Vulnerable To CVE-2022-3602 and CVE-2022-3786
OpenSSL is a very common package installed on Linux devices to provide secure communications over the network. It's an open-source cryptography library of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. New versions are periodically released and can vary based on the Linux distribution. It is important to check with the distribution's publisher for the latest version available. The report below provides an overview of all non-pre-release Linux distributions that are or have been vulnerable or have not yet been confirmed to be not affected yet. It is important that you check any devices listed for possible fixes and mitigations. The report is based on research from the Dutch national cyber security center.
CVE-2022-3602 and CVE-2022-3786 affect all OpenSSL 3 versions up to version 3.0.7 which contains a fix. You can find out all the info you need about the vulnerabilities in our OpenSSL 3 vulnerability blog post.
Run our OpenSSL 3 Vulnerability Query
Select Distinct Top 1000000 tblAssets.AssetID, tblAssets.AssetName, tblAssets.Domain, tsysAssetTypes.AssetTypename As AssetType, Coalesce(tblAssets.Username, s2.username) As [Last User], Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon, tblAssets.IPAddress, tsysIPLocations.IPLocation, tblAssetCustom.Manufacturer, tblAssetCustom.Model, tblLinuxSystem.OSRelease, tblAssets.Lastseen, tblAssets.Lasttried From tblAssets Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype Inner Join tsysIPLocations On tsysIPLocations.LocationID = tblAssets.LocationID Inner Join tblState On tblState.State = tblAssetCustom.State Left Join (Select tblLinuxUser.username, tblLinuxUserLogon.LogonTime, tblLinuxUser.assetid From tblLinuxUser Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id Inner Join (Select tblLinuxUser.assetid, Max(tblLinuxUserLogon.LogonTime) As maxLogonTime From tblLinuxUser Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id Group By tblLinuxUser.assetid) s1 On s1.maxLogonTime = tblLinuxUserLogon.LogonTime) s2 On s2.AssetId = tblAssets.AssetID Left Join tsysOS On tsysOS.OScode = tblAssets.OScode Inner Join tblLinuxSystem On tblLinuxSystem.AssetID = tblAssets.AssetID Where (tblLinuxSystem.OSRelease Like '%Alma%9.%' or tblLinuxSystem.OSRelease Like '%Alpine%Edge%' or tblLinuxSystem.OSRelease Like '%Alpine%3.15%' or tblLinuxSystem.OSRelease Like '%Alpine%3.16%' or tblLinuxSystem.OSRelease Like '%Amazon%2022%' or tblLinuxSystem.OSRelease Like '%Ubuntu%22.04%LTS%' or tblLinuxSystem.OSRelease Like '%Ubuntu%22.10%' or tblLinuxSystem.OSRelease Like '%CentOS%9%' or tblLinuxSystem.OSRelease Like '%Debian%12%' or tblLinuxSystem.OSRelease Like '%Euro%Linux%9%' or tblLinuxSystem.OSRelease Like '%Euro%Linux%9%' or tblLinuxSystem.OSRelease Like '%Fedora%36%' or tblLinuxSystem.OSRelease Like '%Fedora%37%' or tblLinuxSystem.OSRelease Like '%Gentoo%' or tblLinuxSystem.OSRelease Like '%Mint%21%' or tblLinuxSystem.OSRelease Like '%Kali%2022.3%' or tblLinuxSystem.OSRelease Like '%OpenMandriva%4.2%' or tblLinuxSystem.OSRelease Like '%OpenMandriva%4.3%' or tblLinuxSystem.OSRelease Like '%openSUSE%Tumbleweed%' or tblLinuxSystem.OSRelease Like '%Oracle%8.%' or tblLinuxSystem.OSRelease Like '%Oracle%9.%' or tblLinuxSystem.OSRelease Like '%Red Hat%9.%' or tblLinuxSystem.OSRelease Like '%SUSE%Enterprise%15%') And tblState.Statename = 'Active'
