CVE-2022-2582

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-2582
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2582.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-2582
Aliases
Downstream
Related
Published
2022-12-27T22:15:12.390Z
Modified
2026-03-15T14:47:12.149409Z
Severity
  • 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
[none]
Details

The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attacker. AWS now blocks this metadata field, but older SDK versions still send it.

References

Affected packages

Git / github.com/aws/aws-sdk-go

Affected ranges

Type
GIT
Repo
https://github.com/aws/aws-sdk-go
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
35fa6ddf45c061e0f08d3a3b5119f8f4da38f6d1
Type
GIT
Repo
https://github.com/aws/aws-sdk-go
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
35fa6ddf45c061e0f08d3a3b5119f8f4da38f6d1

Affected versions

v.*
v.1.2.9
v0.*
v0.10.0
v0.10.1
v0.10.2
v0.10.3
v0.10.4
v0.6.0
v0.6.1
v0.6.2
v0.6.3
v0.6.4
v0.6.5
v0.6.6
v0.6.7
v0.6.8
v0.7.0
v0.7.1
v0.7.2
v0.7.3
v0.7.4
v0.9.0rc1
v0.9.10
v0.9.11
v0.9.12
v0.9.13
v0.9.14
v0.9.15
v0.9.16
v0.9.17
v0.9.1rc2
v0.9.2rc3
v0.9.3rc4
v0.9.4rc5
v0.9.5
v0.9.6
v0.9.7
v0.9.8
v0.9.9
v1.*
v1.0.0
v1.0.1
v1.0.10
v1.0.11
v1.0.2
v1.0.3
v1.0.4
v1.0.5
v1.0.6
v1.0.7
v1.0.8
v1.0.9
v1.1.0
v1.1.1
v1.1.10
v1.1.11
v1.1.12
v1.1.13
v1.1.14
v1.1.15
v1.1.16
v1.1.17
v1.1.18
v1.1.19
v1.1.2
v1.1.20
v1.1.21
v1.1.22
v1.1.23
v1.1.24
v1.1.25
v1.1.26
v1.1.27
v1.1.28
v1.1.29
v1.1.3
v1.1.30
v1.1.31
v1.1.32
v1.1.33
v1.1.34
v1.1.35
v1.1.36
v1.1.4
v1.1.5
v1.1.6
v1.1.7
v1.1.8
v1.1.9
v1.10.0
v1.10.1
v1.10.10
v1.10.11
v1.10.12
v1.10.13
v1.10.14
v1.10.15
v1.10.16
v1.10.17
v1.10.18
v1.10.19
v1.10.2
v1.10.20
v1.10.21
v1.10.22
v1.10.23
v1.10.24
v1.10.25
v1.10.26
v1.10.27
v1.10.28
v1.10.29
v1.10.3
v1.10.30
v1.10.31
v1.10.32
v1.10.33
v1.10.34
v1.10.35
v1.10.36
v1.10.37
v1.10.38
v1.10.39
v1.10.4
v1.10.40
v1.10.41
v1.10.42
v1.10.43
v1.10.44
v1.10.45
v1.10.46
v1.10.47
v1.10.48
v1.10.49
v1.10.5
v1.10.50
v1.10.51
v1.10.6
v1.10.7
v1.10.8
v1.10.9
v1.11.0
v1.12.0
v1.12.1
v1.12.10
v1.12.11
v1.12.12
v1.12.13
v1.12.14
v1.12.15
v1.12.16
v1.12.17
v1.12.18
v1.12.19
v1.12.2
v1.12.20
v1.12.21
v1.12.22
v1.12.23
v1.12.24
v1.12.25
v1.12.26
v1.12.27
v1.12.28
v1.12.29
v1.12.3
v1.12.30
v1.12.31
v1.12.32
v1.12.33
v1.12.34
v1.12.35
v1.12.36
v1.12.37
v1.12.38
v1.12.39
v1.12.4
v1.12.40
v1.12.41
v1.12.42
v1.12.43
v1.12.44
v1.12.45
v1.12.46
v1.12.47
v1.12.48
v1.12.49
v1.12.5
v1.12.50
v1.12.51
v1.12.52
v1.12.53
v1.12.54
v1.12.55
v1.12.56
v1.12.57
v1.12.58
v1.12.59
v1.12.6
v1.12.60
v1.12.61
v1.12.62
v1.12.64
v1.12.65
v1.12.66
v1.12.67
v1.12.68
v1.12.7
v1.12.70
v1.12.71
v1.12.72
v1.12.73
v1.12.74
v1.12.75
v1.12.76
v1.12.77
v1.12.78
v1.12.79
v1.12.8
v1.12.9
v1.13.1
v1.13.10
v1.13.11
v1.13.12
v1.13.13
v1.13.14
v1.13.15
v1.13.16
v1.13.17
v1.13.18
v1.13.19
v1.13.2
v1.13.20
v1.13.21
v1.13.22
v1.13.23
v1.13.24
v1.13.25
v1.13.26
v1.13.27
v1.13.28
v1.13.29
v1.13.3
v1.13.30
v1.13.31
v1.13.32
v1.13.33
v1.13.34
v1.13.35
v1.13.36
v1.13.37
v1.13.38
v1.13.39
v1.13.4
v1.13.40
v1.13.41
v1.13.42
v1.13.43
v1.13.44
v1.13.45
v1.13.46
v1.13.47
v1.13.48
v1.13.49
v1.13.5
v1.13.50
v1.13.51
v1.13.52
v1.13.53
v1.13.54
v1.13.55
v1.13.56
v1.13.57
v1.13.58
v1.13.59
v1.13.6
v1.13.60
v1.13.7
v1.13.8
v1.13.9
v1.14.0
v1.14.1
v1.14.10
v1.14.11
v1.14.12
v1.14.13
v1.14.14
v1.14.15
v1.14.16
v1.14.17
v1.14.18
v1.14.19
v1.14.2
v1.14.20
v1.14.21
v1.14.22
v1.14.23
v1.14.24
v1.14.25
v1.14.26
v1.14.27
v1.14.28
v1.14.29
v1.14.3
v1.14.30
v1.14.31
v1.14.32
v1.14.33
v1.14.4
v1.14.5
v1.14.6
v1.14.7
v1.14.8
v1.14.9
v1.15.0
v1.15.1
v1.15.10
v1.15.11
v1.15.12
v1.15.13
v1.15.14
v1.15.15
v1.15.16
v1.15.17
v1.15.18
v1.15.19
v1.15.2
v1.15.20
v1.15.21
v1.15.22
v1.15.23
v1.15.24
v1.15.25
v1.15.26
v1.15.27
v1.15.28
v1.15.29
v1.15.3
v1.15.30
v1.15.31
v1.15.32
v1.15.33
v1.15.34
v1.15.35
v1.15.36
v1.15.37
v1.15.38
v1.15.39
v1.15.4
v1.15.40
v1.15.41
v1.15.42
v1.15.43
v1.15.44
v1.15.45
v1.15.46
v1.15.47
v1.15.48
v1.15.49
v1.15.5
v1.15.50
v1.15.51
v1.15.52
v1.15.53
v1.15.54
v1.15.55
v1.15.56
v1.15.57
v1.15.58
v1.15.59
v1.15.6
v1.15.60
v1.15.61
v1.15.62
v1.15.63
v1.15.64
v1.15.65
v1.15.66
v1.15.67
v1.15.68
v1.15.69
v1.15.7
v1.15.70
v1.15.71
v1.15.72
v1.15.73
v1.15.74
v1.15.75
v1.15.76
v1.15.77
v1.15.78
v1.15.79
v1.15.8
v1.15.80
v1.15.81
v1.15.82
v1.15.83
v1.15.84
v1.15.85
v1.15.86
v1.15.87
v1.15.88
v1.15.89
v1.15.9
v1.15.90
v1.16.0
v1.16.1
v1.16.10
v1.16.11
v1.16.12
v1.16.13
v1.16.14
v1.16.15
v1.16.16
v1.16.17
v1.16.18
v1.16.19
v1.16.2
v1.16.20
v1.16.21
v1.16.22
v1.16.23
v1.16.24
v1.16.25
v1.16.26
v1.16.27
v1.16.28
v1.16.29
v1.16.3
v1.16.30
v1.16.31
v1.16.32
v1.16.33
v1.16.34
v1.16.35
v1.16.36
v1.16.4
v1.16.5
v1.16.6
v1.16.7
v1.16.8
v1.16.9
v1.17.0
v1.17.1
v1.17.10
v1.17.11
v1.17.12
v1.17.13
v1.17.14
v1.17.2
v1.17.3
v1.17.4
v1.17.5
v1.17.6
v1.17.7
v1.17.8
v1.17.9
v1.18.0
v1.18.1
v1.18.2
v1.18.3
v1.18.4
v1.18.5
v1.18.6
v1.19.0
v1.19.1
v1.19.10
v1.19.11
v1.19.12
v1.19.13
v1.19.14
v1.19.15
v1.19.16
v1.19.17
v1.19.18
v1.19.19
v1.19.2
v1.19.20
v1.19.21
v1.19.22
v1.19.23
v1.19.24
v1.19.25
v1.19.26
v1.19.27
v1.19.28
v1.19.29
v1.19.3
v1.19.30
v1.19.31
v1.19.32
v1.19.33
v1.19.34
v1.19.35
v1.19.36
v1.19.37
v1.19.38
v1.19.39
v1.19.4
v1.19.40
v1.19.41
v1.19.42
v1.19.43
v1.19.44
v1.19.45
v1.19.46
v1.19.47
v1.19.48
v1.19.49
v1.19.5
v1.19.6
v1.19.7
v1.19.8
v1.19.9
v1.2.0
v1.2.1
v1.2.10
v1.2.2
v1.2.3
v1.2.4
v1.2.5
v1.2.6
v1.2.7
v1.2.8
v1.20.0
v1.20.1
v1.20.10
v1.20.11
v1.20.12
v1.20.13
v1.20.14
v1.20.15
v1.20.16
v1.20.17
v1.20.18
v1.20.19
v1.20.2
v1.20.20
v1.20.21
v1.20.3
v1.20.4
v1.20.5
v1.20.6
v1.20.7
v1.20.8
v1.20.9
v1.21.0
v1.21.1
v1.21.10
v1.21.2
v1.21.3
v1.21.4
v1.21.5
v1.21.6
v1.21.7
v1.21.8
v1.21.9
v1.22.0
v1.22.1
v1.22.2
v1.22.3
v1.22.4
v1.23.0
v1.23.1
v1.23.10
v1.23.11
v1.23.12
v1.23.13
v1.23.14
v1.23.15
v1.23.16
v1.23.17
v1.23.18
v1.23.19
v1.23.2
v1.23.20
v1.23.21
v1.23.22
v1.23.3
v1.23.4
v1.23.5
v1.23.6
v1.23.7
v1.23.8
v1.23.9
v1.24.0
v1.24.1
v1.24.2
v1.24.3
v1.24.4
v1.24.5
v1.24.6
v1.25.0
v1.25.1
v1.25.10
v1.25.11
v1.25.12
v1.25.13
v1.25.2
v1.25.3
v1.25.4
v1.25.5
v1.25.6
v1.25.7
v1.25.8
v1.25.9
v1.3.0
v1.3.1
v1.4.0
v1.4.1
v1.4.10
v1.4.11
v1.4.12
v1.4.15
v1.4.16
v1.4.17
v1.4.18
v1.4.19
v1.4.2
v1.4.20
v1.4.3
v1.4.4
v1.4.5
v1.4.6
v1.4.7
v1.4.8
v1.4.9
v1.5.0
v1.5.1
v1.5.10
v1.5.11
v1.5.12
v1.5.13
v1.5.2
v1.5.3
v1.5.4
v1.5.5
v1.5.6
v1.5.7
v1.5.8
v1.5.9
v1.6.0
v1.6.1
v1.6.10
v1.6.11
v1.6.12
v1.6.13
v1.6.14
v1.6.15
v1.6.16
v1.6.17
v1.6.18
v1.6.19
v1.6.2
v1.6.20
v1.6.21
v1.6.22
v1.6.23
v1.6.24
v1.6.25
v1.6.26
v1.6.27
v1.6.3
v1.6.4
v1.6.5
v1.6.6
v1.6.7
v1.6.8
v1.6.9
v1.7.0
v1.7.1
v1.7.2
v1.7.3
v1.7.4
v1.7.5
v1.7.6
v1.7.7
v1.7.8
v1.7.9
v1.8.0
v1.8.1
v1.8.10
v1.8.11
v1.8.12
v1.8.13
v1.8.14
v1.8.15
v1.8.16
v1.8.17
v1.8.18
v1.8.19
v1.8.2
v1.8.20
v1.8.21
v1.8.22
v1.8.23
v1.8.24
v1.8.25
v1.8.26
v1.8.27
v1.8.28
v1.8.29
v1.8.3
v1.8.30
v1.8.31
v1.8.32
v1.8.33
v1.8.34
v1.8.35
v1.8.36
v1.8.37
v1.8.38
v1.8.39
v1.8.4
v1.8.40
v1.8.41
v1.8.42
v1.8.43
v1.8.44
v1.8.5
v1.8.6
v1.8.7
v1.8.8
v1.8.9
v1.9.0
v1.9.00
v1.9.44
vrelease-v0.*
vrelease-v0.10.0

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "fixed": "1.34.0"
            }
        ]
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2582.json"