{"vulnerability": "CVE-2022-3214", "sightings": [{"uuid": "4b24346e-90c9-4a4b-a914-f04a8fd33cc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32144", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpcwg6aad27", "content": "", "creation_timestamp": "2024-12-20T02:15:35.026588Z"}, {"uuid": "1c65a2af-0e80-4472-a030-93a03953b45c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32144", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113682658039075628", "content": "", "creation_timestamp": "2024-12-20T01:54:59.627008Z"}, {"uuid": "bd8e1bb3-9484-4e65-984c-bb868cad1063", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2022-32142", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "c8c88d15-3651-4c1a-b46c-167e8e6b647f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2022-32140", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "ff1e4ea7-3646-4fbb-bc10-402322b57002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2022-32141", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "27e1c409-0b7c-4aa5-a3a0-c67c2c9e779d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2022-32143", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "cc5be878-6082-4239-aeba-ead7d6a6d0c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32149", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16582", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-32149\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T20:35:11.868Z\n\ud83d\udd17 References:\n1. https://go.dev/issue/56152\n2. https://go.dev/cl/442235\n3. https://groups.google.com/g/golang-announce/c/-hjNw559_tE/m/KlGTfid5CAAJ\n4. https://pkg.go.dev/vuln/GO-2022-1059", "creation_timestamp": "2025-05-15T21:33:40.000000Z"}, {"uuid": "974f91a0-2c7e-4794-bf87-01fd094ee31a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32144", "type": "seen", "source": "https://t.me/cvedetector/13394", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-32144 - Huawei Insufficient Input Verification Weakness\", \n  \"Content\": \"CVE ID : CVE-2022-32144 \nPublished : Dec. 20, 2024, 2:15 a.m. | 40\u00a0minutes ago \nDescription : There is an insufficient input verification vulnerability in Huawei product. Successful exploitation of this vulnerability may lead to service abnormal. (Vulnerability ID: HWPSIRT-2022-76192)  \n  \nThis vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2022-32144. \nSeverity: 8.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T04:12:02.000000Z"}, {"uuid": "9e657146-edf4-4a69-974d-bae0ef7a5c57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32149", "type": "seen", "source": "https://t.me/cibsecurity/51434", "content": "\u203c CVE-2022-32149 \u203c\n\nAn attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T18:29:08.000000Z"}, {"uuid": "d38ea296-9ca3-4b51-87c7-af8482be9841", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32145", "type": "seen", "source": "https://t.me/cibsecurity/44380", "content": "\u203c CVE-2022-32145 \u203c\n\nA vulnerability has been identified in Teamcenter Active Workspace V5.2 (All versions &lt; V5.2.9), Teamcenter Active Workspace V6.0 (All versions &lt; V6.0.3). A reflected cross-site scripting (XSS) vulnerability exists in the web interface of the affected application that could allow an attacker to execute malicious code by tricking users into accessing a malicious link.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-14T14:23:26.000000Z"}, {"uuid": "e70842ce-f6b7-4a96-b112-9641418dc4fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32149", "type": "seen", "source": "https://gist.github.com/alon710/c304e0355d4b523094aabb49f860b83c", "content": "# GHSA-MQXV-9RM6-W8QC: GHSA-MQXV-9RM6-W8QC: CPU Exhaustion in Ech0 i18n Middleware via Accept-Language Header Parser Bypass\n\n&gt; **CVSS Score:** 8.7\n&gt; **Published:** 2026-07-14\n&gt; **Full Report:** https://cvereports.com/reports/GHSA-MQXV-9RM6-W8QC\n\n## Summary\nA critical Denial of Service (DoS) vulnerability in the Ech0 publishing platform allows unauthenticated remote attackers to exhaust CPU resources via a crafted Accept-Language header. By utilizing underscore separators instead of hyphens, the attack bypasses the CVE-2022-32149 guard within the Go language tag parser, triggering a quadratic-time complexity operation.\n\n## TL;DR\nUnauthenticated remote attackers can exhaust server CPU resources by sending a crafted 1 MiB Accept-Language header using underscores, bypassing CVE-2022-32149.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-770\n- **Attack Vector**: Network\n- **CVSS**: 8.7 (High)\n- **Complexity**: Low\n- **Impact**: Denial of Service (CPU Exhaustion)\n- **Exploit Status**: Proof-of-Concept Available\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- Ech0 publishing platform (github.com/lin-snow/ech0)\n- **github.com/lin-snow/ech0**: &lt; 5.0.1 (Fixed in: `5.0.1`)\n\n## Mitigation\n\n- Upgrade to Ech0 version 5.0.1 or higher.\n- Implement validation on the incoming Accept-Language header to limit length and the count of separators before parsing.\n- Configure front-end reverse proxies or WAFs to restrict HTTP header lengths.\n\n**Remediation Steps:**\n1. Verify your current version of github.com/lin-snow/ech0 is below 5.0.1.\n2. Modify your go.mod file to require github.com/lin-snow/ech0 v5.0.1 or apply the defensive middleware patch directly in internal/i18n/i18n.go.\n3. Recompile and deploy the updated binary to your production environments.\n\n## References\n\n- [GitHub Security Advisory GHSA-MQXV-9RM6-W8QC](https://github.com/advisories/GHSA-MQXV-9RM6-W8QC)\n- [Ech0 Repository Homepage](https://github.com/lin-snow/Ech0)\n- [Vulnerable Middleware File](https://github.com/lin-snow/Ech0/blob/451c7c10eb1f23f7525c163e83f8b39f46d5aad0/internal/i18n/i18n.go)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/GHSA-MQXV-9RM6-W8QC) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-07-14T22:13:10.209508Z"}]}