359 matches found
CVE-2023-43765
Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure...
CVE-2023-43763
CVE-2023-43763 affects WithSecure Policy Manager 15 on Windows and Linux. The issue—an XSS vulnerability—stems from an unvalidated parameter in a web endpoint, indicating insufficient input validation in the affected component. The CVSS 3.1 base score is 6.1 (MEDIUM) with Network access, Low conf...
CVE-2023-43762
Certain WithSecure products allow Unauthenticated Remote Code Execution via the web server backend. This affects WithSecure Policy Manager 15 and Policy Manager Proxy 15...
WithSecure products Cross-site Scripting Vulnerability
WithSecure products is a series of security software from the Finnish company WithSecure. A cross-site scripting vulnerability exists in WithSecure Policy Manager version 15, which stems from allowing XSS via unverified parameters in an endpoint...
Number withdrawn
WithSecure products is a range of security software from the Finnish company WithSecure. This CVE number has been withdrawn...
CVE-2023-43766
Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for...
CVE-2023-43766
Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for...
CVE-2023-43761
Certain WithSecure products allow Denial of Service infinite loop. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements...
CVE-2023-43767
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 1...
CVE-2023-43760
Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure...
CVE-2023-43762
Certain WithSecure products allow Unauthenticated Remote Code Execution via the web server backend. This affects WithSecure Policy Manager 15 and Policy Manager Proxy 15...
CVE-2023-43766
This CVE (CVE-2023-43766) affects multiple WithSecure products, including Client Security 15, Server Security 15, Email and Server Security 15, Elements Endpoint Protection 17 and later, Client Security for Mac 15, Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0, Linux P...
CVE-2023-43767
CVE-2023-43767 affects multiple WithSecure products via the aepack archive unpack handler, causing Denial of Service. Affected items include WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later,...
CVE-2023-43763
Certain WithSecure products allow XSS via an unvalidated parameter in the endpoint. This affects WithSecure Policy Manager 15 on Windows and Linux...
CVE-2023-43765
Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure...
CVE-2023-43760
CVE-2023-43760 concerns a DoS in WithSecure product family triggered by processing a fuzzed PE32 file. Affected products include WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later (and for Mac...
CVE-2023-43761
CVE-2023-43761 affects multiple WithSecure products (Client Security 15, Server Security 15, Email and Server Security 15, Elements Endpoint Protection 17+, Client Security for Mac 15, Elements Endpoint Protection for Mac 17+, Linux Security 64 12.0, Linux Protection 12.0, and WithSecure Atlant 1...
WithSecure products Security breaches
WithSecure products is a series of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure Policy Manager 15, Policy Manager Proxy version 15, which originates from a vulnerability that allows execution of unauthenticated remote code via a web server...
WithSecure products Security breaches
WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure products, which originates from the aepack archive unpack handler program that allows a local user to perform a denial of service on a system and bypass security...
WithSecure products Security breaches
WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure products, which originates in the lhz archive unpack handler program that allows a local user to perform a denial of service on a system and bypass security...