What is CVE-2022-37026?

CVE-2022-37026 is a critical client authentication bypass vulnerability in Erlang/OTP affecting multiple versions. Organizations must prioritize remediation to mitigate risks associated with this flaw.

What is the severity of CVE-2022-37026?

CVE-2022-37026 has a severity rating of CRITICAL with a CVSS base score of 9.8.

CVE-2022-37026 | Critical Vulnerability in Erlang OTP

CVE-2022-37026 is a critical vulnerability identified in Erlang/OTP versions prior to 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2. This vulnerability allowsclient authentication bypass in specific client-certification situations for SSL, TLS, and DTLS. The CVSS score for this vulnerability is 9.8, categorizing it as critical due to its high potential impact.

Organizations utilizing affected versions of Erlang/OTP face significant risks, including unauthorized access to secure communications. The vulnerability's critical severity indicates that attackers may leverage it for severe consequences, including data breaches.

Currently, there are no known exploits for CVE-2022-37026, but organizations should remain vigilant. Given the critical nature of this vulnerability, organizations should prioritize patching immediately to mitigate potential risks.

The urgency for defenders cannot be overstated. Prompt action is essential to protect systems from potential exploitation of this vulnerability.

Vulnerability Details

In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a client authentication bypass in certain client-certification situations for SSL, TLS, and DTLS. The vulnerability type is classified as a client authentication bypass, which is critical given its CVSS score of 9.8.

The vulnerability affects the following products from the vendor Erlang: erlang/otp.

This vulnerability was published on September 21, 2022.

Technical Analysis

The root cause of CVE-2022-37026 lies in the handling of client authentication within certain certification situations, allowing unauthorized clients to bypass authentication mechanisms. The attack vector is network-based, with a low complexity requirement, meaning that attackers do not need advanced skills to exploit this vulnerability.

No privileges are required for exploitation, and user interaction is not necessary. The impacts on confidentiality, integrity, and availability are all high, emphasizing the severe risk posed by this vulnerability.

Risk & Impact Analysis

Risk to organizations includes unauthorized access to sensitive data and disruption of secure communications. The blast radius of this vulnerability is extensive, as it affects multiple versions of Erlang/OTP, potentially impacting numerous applications relying on this technology.

Organizations should assess their deployment risks, particularly those that utilize affected versions of Erlang/OTP in production environments. Given the CVSS score of 9.8 and its classification as critical, this vulnerability should be addressed immediately within patch cycles.

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The following versions of Erlang/OTP are affected by CVE-2022-37026:

Erlang/OTP versions prior to 23.3.4.15, versions 24.x prior to 24.3.4.2, and versions 25.x prior to 25.0.2 are vulnerable. Organizations should ensure they are running the latest patched versions to mitigate this vulnerability.

Mitigation & Remediation

To remediate CVE-2022-37026, organizations should apply the latest patches to their Erlang/OTP installations. It is crucial to upgrade to at least version 23.3.4.15, 24.3.4.2, or 25.0.2 accordingly. If immediate patching is not feasible, organizations should consider implementing workarounds such as limiting network exposure of affected services.

Organizations should also review their configurations and ensure that any sensitive services are appropriately secured. Regular security assessments and application security assessments can help identify and mitigate vulnerabilities in the future.

Detection Guidance

To detect potential exploitation of CVE-2022-37026, organizations should monitor for unusual authentication attempts, particularly from unauthorized clients. Log analysis should focus on client authentication processes and SSL/TLS handshakes.

Network traffic analysis can also help identify anomalous behavior that may indicate attempts to bypass authentication mechanisms.

AppSecure Threat Intelligence Insight

CVE-2022-37026 highlights the importance of regular software updates and security assessments. As vulnerabilities are discovered, organizations must be proactive in their approach to security. This incident underscores the need for a robust vulnerability management program to identify and mitigate risks promptly.

This vulnerability also serves as a reminder for organizations to engage in regular penetration testing to validate security measures implemented against potential threats.

Finally, understanding the evolving threat landscape is crucial. Organizations must stay informed about emerging vulnerabilities and trends to adapt their defenses accordingly.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2022-37026: Critical Vulnerability in Erlang OTP