CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
30.7%
A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.
Vendor | Product | Version | CPE |
---|---|---|---|
f-secure | elements_endpoint_detection_and_response | * | cpe:2.3:a:f-secure:elements_endpoint_detection_and_response:*:*:*:*:*:*:*:* |
f-secure | elements_endpoint_protection | * | cpe:2.3:a:f-secure:elements_endpoint_protection:*:*:*:*:*:*:*:* |
apple | macos | - | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
f-secure | atlant | * | cpe:2.3:a:f-secure:atlant:*:*:*:*:*:*:*:* |
f-secure | cloud_protection_for_salesforce | * | cpe:2.3:a:f-secure:cloud_protection_for_salesforce:*:*:*:*:*:*:*:* |
f-secure | elements_collaboration_protection | * | cpe:2.3:a:f-secure:elements_collaboration_protection:*:*:*:*:*:*:*:* |
f-secure | internet_gatekeeper | * | cpe:2.3:a:f-secure:internet_gatekeeper:*:*:*:*:*:*:*:* |
f-secure | linux_security | * | cpe:2.3:a:f-secure:linux_security:*:*:*:*:*:*:x86:* |
f-secure | linux_security_64 | * | cpe:2.3:a:f-secure:linux_security_64:*:*:*:*:*:*:*:* |
[
{
"product": "All F-Secure and WithSecure Endpoint Protection products for Mac F-Secure Linux Security (32-bit) F-Secure Linux Security (64-bit) F-Secure Atlant F-Secure Internet Gatekeeper WithSecure Cloud Protection for Salesforce WithSecure Collaboration Protection",
"vendor": "F-Secure",
"versions": [
{
"status": "affected",
"version": "All Version "
}
]
}
]
More