The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-21T00:00:00

Updated: 2024-08-03T10:29:21.027Z

Reserved: 2022-08-07T00:00:00

Link: CVE-2022-37454

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-10-21T06:15:09.333

Modified: 2024-11-21T07:15:00.910

Link: CVE-2022-37454

cve-icon Redhat

Severity : Important

Publid Date: 2022-10-20T00:00:00Z

Links: CVE-2022-37454 - Bugzilla