Design/Logic Flaw

2023-09-2205:15:00

PRIOn knowledge base

www.prio-n.com

withsecure

local privilege escalation

design/logic flaw

lhz archive unpack handler

nvd

client security

server security

email and server security

elements endpoint protection

linux security

linux protection

atlant

7.8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.

CPENameOperatorVersion
atlanteq1.0.35-1
client_securityeq15.00
client_securityeq15.00
elements_endpoint_protectionge17.0
elements_endpoint_protectionge17.0
email_and_server_securityeq15.00
linux_protectioneq12.0
linux_security_64eq12.0
server_securityeq15.00

Name	Operator	Version
atlant	eq	1.0.35-1
client_security	eq	15.00
client_security	eq	15.00
elements_endpoint_protection	ge	17.0
elements_endpoint_protection	ge	17.0
email_and_server_security	eq	15.00
linux_protection	eq	12.0
linux_security_64	eq	12.0
server_security	eq	15.00