Lucene search
F-SecureUSCVELIST:CVE-2022-28886HistorySep 23, 2022 - 6:24 p.m.
CVE-2022-28886 Denial-of-Service (DoS) Vulnerability
2022-09-2318:24:04
F-SecureUS
www.cve.org
6
cve-2022-28886
f-secure
withsecure
denial-of-service
vulnerability
aerdl.so
aerdl.dll
pe files
scanning engine
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
AI Score
5.8
Confidence
High
EPSS
0.001
Percentile
23.6%
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.so/aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine
CNA Affected
[
{
"product": "All F-Secure and WithSecure Endpoint Protection products for Windows running 32 bit operating system. F-Secure Linux Security 32 F-Secure Internet Gatekeeper",
"vendor": "F-Secure and WithSecure",
"versions": [
{
"status": "affected",
"version": "All Version "
}
]
}
]Related
cve
cve
CVE-2022-28886
2022-09-23 19:15:11
prion
prion
Denial of service
2022-09-23 19:15:00
nvd
nvd
CVE-2022-28886
2022-09-23 19:15:11
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
AI Score
5.8
Confidence
High
EPSS
0.001
Percentile
23.6%
Related for CVELIST:CVE-2022-28886