Lucene search

[email protected]CVE-2023-43767

HistorySep 22, 2023 - 5:15 a.m.

CVE-2023-43767

2023-09-2205:15:09

[email protected]

web.nvd.nist.gov

withsecure

denial of service

cve-2023-43767

security vulnerability

nvd

withsecure client security

withsecure server security

withsecure email and server security

withsecure elements endpoint protection

withsecure client security for mac

withsecure elements endpoint protection for mac

linux security

linux protection

withsecure atlant

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.0%

JSON

Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.

Affected configurations

NVD

Node

f-securelinux_protectionMatch12.0

f-securelinux_security_64Match12.0

AND

linuxlinux_kernelMatch-

Node

f-secureatlantMatch1.0.35-1

Node

f-secureclient_securityMatch15.00

f-secureelements_endpoint_protectionRange17.0≥

f-secureemail_and_server_securityMatch15.00

f-secureserver_securityMatch15.00

AND

microsoftwindowsMatch-

Node

f-secureclient_securityMatch15.00

f-secureelements_endpoint_protectionRange17.0≥

AND

applemacosMatch-

CPENameOperatorVersion
f-secure:linux_protectionf-secure linux protectioneq12.0
f-secure:linux_security_64f-secure linux security 64eq12.0

CPE	Name	Operator	Version
f-secure:linux_protection	f-secure linux protection	eq	12.0
f-secure:linux_security_64	f-secure linux security 64	eq	12.0

References

www.withsecure.com/en/support/security-advisories

www.withsecure.com/en/support/security-advisories/cve-2023-nnn3

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.0%

JSON

Related for CVE-2023-43767

nvd1 cvelist1 prion1