CVE-2021-44747

CVE-2021-44747: A DoS vulnerability in F-Secure Linux Security targets the Fmlib component. The vulnerability can crash while scanning fuzzed files and can be triggered remotely, causing denial of service to the Anti-Virus engine. Affected outcome is a partial availability impact for the AV compo...

CVE-2021-40837

The CVE-2021-40837 issue affects the F-Secure antivirus engine prior to Capricorn update 2022-02-01_01. The vulnerability arises during ACE file decompression, triggering a denial-of-service condition where the scanner service stops. It can be exploited remotely by an attacker, leading to availab...

CVE-2022-28881

CVE-2022-28881 describes a DoS in F-Secure Atlant due to a crash in the unpacker of the aerdl.dll component, causing the scanning engine to crash. A remote attacker could trigger the condition. Public documents consistently identify the affected software as F-Secure Atlant / WithSecure products a...

CVE-2022-28875

The CVE-2022-28875 entry describes a DoS flaw in F-Secure Atlant and certain WithSecure products where scanning the aemobile component crashes the scanning engine. The vulnerability can be triggered remotely by an attacker, indicating remote attack practicality. The connected records consistently...

CVE-2022-28878

CVE-2022-28878 describes a Denial-of-Service in F-Secure Atlant and some WithSecure products where scanning fuzzed APK files can crash the scanning engine. Public details in the initial document indicate impact to availability but do not specify affected versions, exact vulnerable components, roo...

CVE-2022-28882

CVE-2022-28882 affects F-Secure & WithSecure products. The issue is in the aegen.dll component, which can enter an infinite loop when unpacking PE files, causing the scanning engine to crash. The vulnerability can be triggered remotely by an attacker, as noted in the source description. Some conn...

CVE-2009-1782

CVE-2009-1782 affects multiple F‑Secure products (e.g., Anti‑Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper 6.61 and earlier; Internet Security 2009 and earlier; Anti‑Virus 2009 and earlier; Client Security 8.0 and earlier) and enables bypass of malware detection when processi...

CVE-2022-28874

CVE-2022-28874 affects F-Secure Atlant and certain WithSecure products. The vulnerability arises when scanning fuzzed PE32 files, causing memory corruption and a heap buffer overflow, which can crash the scanning engine. The exploit is described as remotely triggerable. The connected records prov...

CVE-2022-28883

CVE-2022-28883 is a DoS vulnerability affecting F-Secure & WithSecure products. The issue arises in the aerdl unpack function, where the unpack process crashes, potentially causing a scanning engine crash. Exploitation can be triggered remotely by an attacker. The available connected documents de...

CVE-2022-28886

CVE-2022-28886 affects F-Secure and WithSecure products. The aerdl.so/aerdl.dll component may enter an infinite loop while unpacking PE files, potentially crashing the scanning engine. The available sources indicate a DoS impact without detailing affected versions or a published fix in the provid...

CVE-2022-28887

CVE-2022-28887 describes a Denial-of-Service condition in F-Secure & WithSecure products. The vulnerability stems from the aerdl.dll unpacker handler function , which can crash the scanning engine, leading to a potential service disruption. Public details consistently reference a DoS impact but d...

CVE-2022-28876

CVE-2022-28876 affects F-Secure Atlant and certain WithSecure products. The aeheur.dll component used by the scanner can crash the scanning engine, enabling a remote attacker to trigger a DoS. Impact is availability loss (per documents). Exploitation details are limited to remote trigger; no reme...

CVE-2021-33602

The CVE-2021-33602 issue affects the F-Secure Antivirus engine, where unpacking a ZIP archive via LZW decompression can crash the scanning engine. Exploitation is described as remote and can result in Denial-of-Service of the antivirus engine. Supported sources (Red Hat, NVD, CVE lists, CNNVD) co...

CVE-2022-28880

CVE-2022-28880 affects F-Secure Atlant and certain WithSecure products. The vulnerability occurs in the scanning engine when processing fuzzed PE32-bit files, potentially crashing the engine and causing a Denial-of-Service. Exploitation is described as remotely triggerable. The connected document...

CVE-2022-28879

CVE-2022-28879 affects F-Secure Atlant and some WithSecure products. The issue arises during scanning of the aepack.dll component, which can crash the scanning engine and cause a Denial-of-Service. Public details in the provided documents confirm the vulnerability impact (availability loss) and t...

CVE-2021-33603

CVE-2021-33603 affects F‑Secure Atlant with the AVPACK module, where the component can crash while scanning fuzzed files. The vulnerability enables a remote attacker to trigger a DoS of the antivirus engine. The available documents identify the affected product family (F‑Secure Atlant) and the vu...

CVE-2021-33598

CVE-2021-33598 – DoS in F-Secure Atlant SAVAPI : Concrete docs confirm a remote-triggerable denial-of-service in the SAVAPI component of F-Secure Atlant, affecting all versions, caused by a crash during fuzzed-file scanning. Impact is DoS of the Anti-Virus engine. Several connected sources (Red H...

CVE-2021-33599

The CVE-2021-33599 issue concerns the F-Secure Antivirus engine. The documented vulnerability arises when scanning WIM archive files, which can cause an infinite loop or other conditions that freeze the AV engine, leading to a Denial-of-Service. Exploitation is described as remote, with a success...

CVE-2022-28885

CVE-2022-28885 is a DoS in the fsicapd component used by WithSecure products. The service can crash while parsing a scanning request, due to the underlying parsing logic in fsicapd. Public records describe the vulnerability but do not provide confirmed exploit code; in practice, exploitation woul...

CVE-2021-33572

CVE-2021-33572 is a DoS vulnerability in the FSAVD component of F-Secure Linux Security. The FSAVD process can crash when scanning larger packages or fuzzed files, with a remote attacker able to trigger the issue and cause DoS of the Anti-Virus engine. The provided sources do not specify affected...

CVE-2022-28884

CVE-2022-28884 affects F-Secure and WithSecure products, where the aerdl.dll component may enter an infinite loop while unpacking PE files, potentially crashing the scanning engine. The provided sources describe a Denial-of-Service risk due to this loop, with no concrete exploit details or listed...

CVE-2021-40836

The CVE-2021-40836 entry describes a DoS in the F-Secure antivirus engine when scanning MS Outlook .pst files. Vulnerability can be exploited remotely, leading to availability impact (partial) of the antivirus engine. Connected sources confirm the affected product (F-Secure antivirus engine) and ...

CVE-2021-33597

CVE-2021-33597 describes a DoS in F-Secure Atlant where the SAVAPI component can crash while scanning fuzzed files. The issue can be triggered remotely and, if exploited, results in availability impact to the Anti-Virus engine. The provided documents confirm the vulnerability and impact but do no...

CVE-2021-40832

The CVE-2021-40832 issue affects F‑Secure Atlant’s AVRDL unpacking module used in certain F‑Secure products. The vulnerability causes the unpacking component to crash while scanning fuzzed files, and can be triggered remotely, resulting in a Denial-of-Service (DoS) of the Anti-Virus engine. The c...

CVE-2021-40833

CVE-2021-40833 affects the F-Secure antivirus engine. The vulnerability arises in UPX unpacking, leading to denial-of-service. Exploitation is described as possible remotely in the CVE summary, but the connected documents do not provide explicit exploitation steps, affected versions, specific vul...