A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.
References
Link | Resource |
---|---|
https://www.f-secure.com/en/business/support-and-downloads/security-advisories | Vendor Advisory |
https://www.withsecure.com/en/support/security-advisories | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
History
12 Aug 2022, 20:39
Type | Values Removed | Values Added |
---|---|---|
First Time |
F-secure linux Security
F-secure elements Collaboration Protection F-secure F-secure internet Gatekeeper F-secure elements Endpoint Protection F-secure elements Endpoint Detection And Response F-secure atlant Apple F-secure linux Security 64 Apple macos Microsoft Microsoft windows F-secure cloud Protection For Salesforce |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | (MISC) https://www.f-secure.com/en/business/support-and-downloads/security-advisories - Vendor Advisory | |
References | (MISC) https://www.withsecure.com/en/support/security-advisories - Vendor Advisory | |
CPE | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:a:f-secure:elements_endpoint_protection:*:*:*:*:*:*:*:* cpe:2.3:a:f-secure:cloud_protection_for_salesforce:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:f-secure:linux_security_64:*:*:*:*:*:*:*:* cpe:2.3:a:f-secure:atlant:*:*:*:*:*:*:*:* cpe:2.3:a:f-secure:internet_gatekeeper:*:*:*:*:*:*:*:* cpe:2.3:a:f-secure:elements_collaboration_protection:*:*:*:*:*:*:*:* cpe:2.3:a:f-secure:linux_security:*:*:*:*:*:*:x86:* cpe:2.3:a:f-secure:elements_endpoint_detection_and_response:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo |
10 Aug 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-10 20:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-28881
Mitre link : CVE-2022-28881
CVE.ORG link : CVE-2022-28881
JSON object : View
Products Affected
f-secure
- linux_security
- elements_endpoint_protection
- cloud_protection_for_salesforce
- internet_gatekeeper
- elements_collaboration_protection
- linux_security_64
- elements_endpoint_detection_and_response
- atlant
apple
- macos
microsoft
- windows
CWE