Code injection

2023-09-1807:15:00

PRIOn knowledge base

www.prio-n.com

code injection

withsecure products

remote crash

pe file

vulnerability

nvd

version affected

linux security

linux protection

atlant

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.

CPENameOperatorVersion
atlanteq1.0.35-1
client_securityeq15
client_securityeq15
elements_endpoint_protectionge17
elements_endpoint_protectionge17
email_and_server_securityeq15
linux_protectioneq12.0
linux_security_64eq12.0
server_securityeq15

Name	Operator	Version
atlant	eq	1.0.35-1
client_security	eq	15
client_security	eq	15
elements_endpoint_protection	ge	17
elements_endpoint_protection	ge	17
email_and_server_security	eq	15
linux_protection	eq	12.0
linux_security_64	eq	12.0
server_security	eq	15

References

www.withsecure.com/en/support/security-advisories