Lucene search

[email protected]NVD:CVE-2022-28885

HistorySep 06, 2022 - 6:15 p.m.

CVE-2022-28885

2022-09-0618:15:12

[email protected]

web.nvd.nist.gov

cve-2022-28885

withsecure products

fsicapd

dos vulnerability

service crash

scanning request

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

40.9%

JSON

A Denial-of-Service (DoS) vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing the scanning request.

Affected configurations

Nvd

Node

f-secureatlantMatch-

f-securelinux_securityMatch-x64

VendorProductVersionCPE
f-secureatlant-cpe:2.3:a:f-secure:atlant:-:*:*:*:*:*:*:*
f-securelinux_security-cpe:2.3:a:f-secure:linux_security:-:*:*:*:*:*:x64:*

Vendor	Product	Version	CPE
f-secure	atlant	-	cpe:2.3:a:f-secure:atlant:-:::::::*
f-secure	linux_security	-	cpe:2.3:a:f-secure:linux_security:-::::::x64:

References

www.withsecure.com/en/expertise/people

www.withsecure.com/en/support/security-advisories

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

40.9%

JSON

Related for NVD:CVE-2022-28885

cve1 prion1 cvelist1