CVE-2021-33597
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
26.2%
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS) of the Anti-Virus engine.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| f-secure | client_security | - | cpe:2.3:a:f-secure:client_security:-:*:*:*:premium:*:*:* |
| f-secure | client_security | - | cpe:2.3:a:f-secure:client_security:-:*:*:*:standard:*:*:* |
| f-secure | linux_security | - | cpe:2.3:a:f-secure:linux_security:-:*:*:*:*:*:*:* |
| f-secure | business_suite | - | cpe:2.3:a:f-secure:business_suite:-:*:*:*:*:*:*:* |
| f-secure | elements_endpoint_protection | - | cpe:2.3:a:f-secure:elements_endpoint_protection:-:*:*:*:*:*:*:* |
| apple | macos | - | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
26.2%