29 matches found
CVE-2021-44747
CVE-2021-44747: A DoS vulnerability in F-Secure Linux Security targets the Fmlib component. The vulnerability can crash while scanning fuzzed files and can be triggered remotely, causing denial of service to the Anti-Virus engine. Affected outcome is a partial availability impact for the AV compo...
CVE-2021-40837
The CVE-2021-40837 issue affects the F-Secure antivirus engine prior to Capricorn update 2022-02-01_01. The vulnerability arises during ACE file decompression, triggering a denial-of-service condition where the scanner service stops. It can be exploited remotely by an attacker, leading to availab...
CVE-2022-28877
Technical details are not provided in the supplied documents; no concrete information on affected components, root cause, or fixes is present. Monitor for updates from vendors.
CVE-2022-28881
CVE-2022-28881 describes a DoS in F-Secure Atlant due to a crash in the unpacker of the aerdl.dll component, causing the scanning engine to crash. A remote attacker could trigger the condition. Public documents consistently identify the affected software as F-Secure Atlant / WithSecure products a...
CVE-2022-28875
The CVE-2022-28875 entry describes a DoS flaw in F-Secure Atlant and certain WithSecure products where scanning the aemobile component crashes the scanning engine. The vulnerability can be triggered remotely by an attacker, indicating remote attack practicality. The connected records consistently...
CVE-2022-28878
CVE-2022-28878 describes a Denial-of-Service in F-Secure Atlant and some WithSecure products where scanning fuzzed APK files can crash the scanning engine. Public details in the initial document indicate impact to availability but do not specify affected versions, exact vulnerable components, roo...
CVE-2022-28882
CVE-2022-28882 affects F-Secure & WithSecure products. The issue is in the aegen.dll component, which can enter an infinite loop when unpacking PE files, causing the scanning engine to crash. The vulnerability can be triggered remotely by an attacker, as noted in the source description. Some conn...
CVE-2022-28886
CVE-2022-28886 affects F-Secure and WithSecure products. The aerdl.so/aerdl.dll component may enter an infinite loop while unpacking PE files, potentially crashing the scanning engine. The available sources indicate a DoS impact without detailing affected versions or a published fix in the provid...
CVE-2022-38166
CVE-2022-38166 affects F-Secure Endpoint Protection for Windows and macOS prior to channel Capricorn 2022-11-22_07. The vulnerability involves the aerdl.dll unpacker handler, which can crash the scanning engine, enabling remote denial-of-service through network-triggered conditions. Connected sou...
CVE-2022-28883
CVE-2022-28883 is a DoS vulnerability affecting F-Secure & WithSecure products. The issue arises in the aerdl unpack function, where the unpack process crashes, potentially causing a scanning engine crash. Exploitation can be triggered remotely by an attacker. The available connected documents de...
CVE-2022-28887
CVE-2022-28887 describes a Denial-of-Service condition in F-Secure & WithSecure products. The vulnerability stems from the aerdl.dll unpacker handler function , which can crash the scanning engine, leading to a potential service disruption. Public details consistently reference a DoS impact but d...
CVE-2022-28874
CVE-2022-28874 affects F-Secure Atlant and certain WithSecure products. The vulnerability arises when scanning fuzzed PE32 files, causing memory corruption and a heap buffer overflow, which can crash the scanning engine. The exploit is described as remotely triggerable. The connected records prov...
CVE-2022-28876
CVE-2022-28876 affects F-Secure Atlant and certain WithSecure products. The aeheur.dll component used by the scanner can crash the scanning engine, enabling a remote attacker to trigger a DoS. Impact is availability loss (per documents). Exploitation details are limited to remote trigger; no reme...
CVE-2022-28880
CVE-2022-28880 affects F-Secure Atlant and certain WithSecure products. The vulnerability occurs in the scanning engine when processing fuzzed PE32-bit files, potentially crashing the engine and causing a Denial-of-Service. Exploitation is described as remotely triggerable. The connected document...
CVE-2022-28879
CVE-2022-28879 affects F-Secure Atlant and some WithSecure products. The issue arises during scanning of the aepack.dll component, which can crash the scanning engine and cause a Denial-of-Service. Public details in the provided documents confirm the vulnerability impact (availability loss) and t...
CVE-2021-33603
CVE-2021-33603 affects F‑Secure Atlant with the AVPACK module, where the component can crash while scanning fuzzed files. The vulnerability enables a remote attacker to trigger a DoS of the antivirus engine. The available documents identify the affected product family (F‑Secure Atlant) and the vu...
CVE-2021-33598
CVE-2021-33598 – DoS in F-Secure Atlant SAVAPI : Concrete docs confirm a remote-triggerable denial-of-service in the SAVAPI component of F-Secure Atlant, affecting all versions, caused by a crash during fuzzed-file scanning. Impact is DoS of the Anti-Virus engine. Several connected sources (Red H...
CVE-2021-33599
The CVE-2021-33599 issue concerns the F-Secure Antivirus engine. The documented vulnerability arises when scanning WIM archive files, which can cause an infinite loop or other conditions that freeze the AV engine, leading to a Denial-of-Service. Exploitation is described as remote, with a success...
CVE-2023-49322
CVE-2023-49322 affects multiple WithSecure products (Client Security 15; Server Security 15; Email and Server Security 15; Elements Endpoint Protection 17 and later; Client Security for Mac 15; Elements Endpoint Protection for Mac 17 and later; Linux Security 64 12.0; Linux Protection 12.0; Atlan...
CVE-2023-43760
CVE-2023-43760 concerns a DoS in WithSecure product family triggered by processing a fuzzed PE32 file. Affected products include WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later (and for Mac...
CVE-2021-40836
The CVE-2021-40836 entry describes a DoS in the F-Secure antivirus engine when scanning MS Outlook .pst files. Vulnerability can be exploited remotely, leading to availability impact (partial) of the antivirus engine. Connected sources confirm the affected product (F-Secure antivirus engine) and ...
CVE-2023-43766
This CVE (CVE-2023-43766) affects multiple WithSecure products, including Client Security 15, Server Security 15, Email and Server Security 15, Elements Endpoint Protection 17 and later, Client Security for Mac 15, Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0, Linux P...
CVE-2021-33597
CVE-2021-33597 describes a DoS in F-Secure Atlant where the SAVAPI component can crash while scanning fuzzed files. The issue can be triggered remotely and, if exploited, results in availability impact to the Anti-Virus engine. The provided documents confirm the vulnerability and impact but do no...
CVE-2023-43761
CVE-2023-43761 affects multiple WithSecure products (Client Security 15, Server Security 15, Email and Server Security 15, Elements Endpoint Protection 17+, Client Security for Mac 15, Elements Endpoint Protection for Mac 17+, Linux Security 64 12.0, Linux Protection 12.0, and WithSecure Atlant 1...
CVE-2021-40832
The CVE-2021-40832 issue affects F‑Secure Atlant’s AVRDL unpacking module used in certain F‑Secure products. The vulnerability causes the unpacking component to crash while scanning fuzzed files, and can be triggered remotely, resulting in a Denial-of-Service (DoS) of the Anti-Virus engine. The c...
CVE-2021-40833
CVE-2021-40833 affects the F-Secure antivirus engine. The vulnerability arises in UPX unpacking, leading to denial-of-service. Exploitation is described as possible remotely in the CVE summary, but the connected documents do not provide explicit exploitation steps, affected versions, specific vul...
CVE-2023-43765
Summary : CVE-2023-43765 affects multiple WithSecure products due to a Denial of Service manifested in the aeelf component. Affected versions include: WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 ...
CVE-2023-43767
CVE-2023-43767 affects multiple WithSecure products via the aepack archive unpack handler, causing Denial of Service. Affected items include WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later,...
CVE-2023-49321
CVE-2023-49321 is a Denial of Service vulnerability affecting several WithSecure products, where scanning a crafted file can cause the scanner to hang. Affected: WithSecure Client Security 15 , WithSecure Server Security 15 , WithSecure Email and Server Security 15 , WithSecure Elements Endpoint ...