// For flags

CVE-2023-49322

 

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant 1.0.35-1.

Ciertos productos WithSecure permiten una DenegaciĆ³n de Servicio porque hay una falla en el controlador de descompresiĆ³n que puede provocar una falla en el motor de escaneo. Esto afecta a WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 y posteriores, WithSecure Client Security para Mac 15, WithSecure Elements Endpoint Protection para Mac 17 y posteriores, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, y WithSecure Atlant 1.0.35-1.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2023-11-26 CVE Reserved
  • 2023-11-26 CVE Published
  • 2024-08-02 CVE Updated
  • 2024-10-26 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
F-secure
Search vendor "F-secure"
Linux Protection
Search vendor "F-secure" for product "Linux Protection"
12.0
Search vendor "F-secure" for product "Linux Protection" and version "12.0"
-
Affected
in Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
--
Safe
F-secure
Search vendor "F-secure"
Linux Security 64
Search vendor "F-secure" for product "Linux Security 64"
12.0
Search vendor "F-secure" for product "Linux Security 64" and version "12.0"
-
Affected
in Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
--
Safe
F-secure
Search vendor "F-secure"
Client Security
Search vendor "F-secure" for product "Client Security"
15.00
Search vendor "F-secure" for product "Client Security" and version "15.00"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows
Search vendor "Microsoft" for product "Windows"
--
Safe
F-secure
Search vendor "F-secure"
Elements Endpoint Protection
Search vendor "F-secure" for product "Elements Endpoint Protection"
>= 17.0
Search vendor "F-secure" for product "Elements Endpoint Protection" and version " >= 17.0"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows
Search vendor "Microsoft" for product "Windows"
--
Safe
F-secure
Search vendor "F-secure"
Email And Server Security
Search vendor "F-secure" for product "Email And Server Security"
15.00
Search vendor "F-secure" for product "Email And Server Security" and version "15.00"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows
Search vendor "Microsoft" for product "Windows"
--
Safe
F-secure
Search vendor "F-secure"
Server Security
Search vendor "F-secure" for product "Server Security"
15.00
Search vendor "F-secure" for product "Server Security" and version "15.00"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows
Search vendor "Microsoft" for product "Windows"
--
Safe
F-secure
Search vendor "F-secure"
Client Security
Search vendor "F-secure" for product "Client Security"
15.00
Search vendor "F-secure" for product "Client Security" and version "15.00"
-
Affected
in Apple
Search vendor "Apple"
Macos
Search vendor "Apple" for product "Macos"
--
Safe
F-secure
Search vendor "F-secure"
Elements Endpoint Protection
Search vendor "F-secure" for product "Elements Endpoint Protection"
>= 17.0
Search vendor "F-secure" for product "Elements Endpoint Protection" and version " >= 17.0"
-
Affected
in Apple
Search vendor "Apple"
Macos
Search vendor "Apple" for product "Macos"
--
Safe
F-secure
Search vendor "F-secure"
Atlant
Search vendor "F-secure" for product "Atlant"
1.0.35-1
Search vendor "F-secure" for product "Atlant" and version "1.0.35-1"
-
Affected