Find Devices Potentially Vulnerable To CVE-2022-3602 and CVE-2022-3786
OpenSSL is a very common package installed on Linux devices to provide secure communications over the network. It’s an open-source cryptography library of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. New versions are periodically released and can vary based on the Linux distribution. It is important to check with the distribution’s publisher for the latest version available. The report below provides an overview of all non-pre-release Linux distributions that are or have been vulnerable or have not yet been confirmed to be not affected yet. It is important that you check any devices listed for possible fixes and mitigations. The report is based on research from the Dutch national cyber security center.
CVE-2022-3602 and CVE-2022-3786 affect all OpenSSL 3 versions up to version 3.0.7 which contains a fix. You can find out all the info you need about the vulnerabilities in our OpenSSL 3 vulnerability blog post.
Run our OpenSSL 3 Vulnerability Query
Select Distinct Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
Coalesce(tblAssets.Username, s2.username) As [Last User],
Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon,
tblAssets.IPAddress,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblLinuxSystem.OSRelease,
tblAssets.Lastseen,
tblAssets.Lasttried
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Left Join (Select tblLinuxUser.username,
tblLinuxUserLogon.LogonTime,
tblLinuxUser.assetid
From tblLinuxUser
Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id
Inner Join (Select tblLinuxUser.assetid,
Max(tblLinuxUserLogon.LogonTime) As maxLogonTime
From tblLinuxUser
Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id
Group By tblLinuxUser.assetid) s1 On s1.maxLogonTime =
tblLinuxUserLogon.LogonTime) s2 On s2.AssetId = tblAssets.AssetID
Left Join tsysOS On tsysOS.OScode = tblAssets.OScode
Inner Join tblLinuxSystem On tblLinuxSystem.AssetID = tblAssets.AssetID
Where (tblLinuxSystem.OSRelease Like '%Alma%9.%' or tblLinuxSystem.OSRelease Like '%Alpine%Edge%' or tblLinuxSystem.OSRelease Like '%Alpine%3.15%'
or tblLinuxSystem.OSRelease Like '%Alpine%3.16%' or tblLinuxSystem.OSRelease Like '%Amazon%2022%' or tblLinuxSystem.OSRelease Like '%Ubuntu%22.04%LTS%'
or tblLinuxSystem.OSRelease Like '%Ubuntu%22.10%' or tblLinuxSystem.OSRelease Like '%CentOS%9%' or tblLinuxSystem.OSRelease Like '%Debian%12%'
or tblLinuxSystem.OSRelease Like '%Euro%Linux%9%' or tblLinuxSystem.OSRelease Like '%Euro%Linux%9%' or tblLinuxSystem.OSRelease Like '%Fedora%36%'
or tblLinuxSystem.OSRelease Like '%Fedora%37%' or tblLinuxSystem.OSRelease Like '%Gentoo%' or tblLinuxSystem.OSRelease Like '%Mint%21%'
or tblLinuxSystem.OSRelease Like '%Kali%2022.3%' or tblLinuxSystem.OSRelease Like '%OpenMandriva%4.2%' or tblLinuxSystem.OSRelease Like '%OpenMandriva%4.3%'
or tblLinuxSystem.OSRelease Like '%openSUSE%Tumbleweed%' or tblLinuxSystem.OSRelease Like '%Oracle%8.%' or tblLinuxSystem.OSRelease Like '%Oracle%9.%'
or tblLinuxSystem.OSRelease Like '%Red Hat%9.%' or tblLinuxSystem.OSRelease Like '%SUSE%Enterprise%15%')
And tblState.Statename = 'Active'
