CVE-2021-33572
Denial-of-Service (DoS) Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS) of the Anti-Virus engine.
Se ha detectado una vulnerabilidad de Denegación de Servicio (DoS) en F-Secure Linux Security por la que el componente FSAVD usado en determinados productos de F-Secure puede bloquearse mientras se analizan paquetes y archivos de gran tamaño. La explotación puede ser desencadenada remotamente por un atacante. Un ataque con éxito resultará en una Denegación de Servicio (DoS) del motor antivirus
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-05-25 CVE Reserved
- 2021-06-21 CVE Published
- 2023-03-08 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-476: NULL Pointer Dereference
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
https://www.f-secure.com/en/business/programs/vulnerability-reward-program/hall-of-fame | Product |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://www.f-secure.com/en/business/support-and-downloads/security-advisories | 2021-06-28 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
F-secure Search vendor "F-secure" | Cloud Protection For Salesforce Search vendor "F-secure" for product "Cloud Protection For Salesforce" | - | - |
Affected
| ||||||
F-secure Search vendor "F-secure" | Elements For Microsoft 365 Search vendor "F-secure" for product "Elements For Microsoft 365" | - | - |
Affected
| ||||||
F-secure Search vendor "F-secure" | Endpoint Protection Search vendor "F-secure" for product "Endpoint Protection" | * | - |
Affected
| ||||||
F-secure Search vendor "F-secure" | Linux Security Search vendor "F-secure" for product "Linux Security" | - | - |
Affected
|