Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.
References
Link | Resource |
---|---|
https://www.withsecure.com/en/support/security-advisories | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
History
22 Sep 2023, 00:53
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CWE | CWE-835 | |
References | (MISC) https://www.withsecure.com/en/support/security-advisories - Vendor Advisory | |
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_security_64:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_protection:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:atlant:1.0.35-1:*:*:*:*:*:*:* |
|
First Time |
Withsecure linux Protection
Withsecure Withsecure email And Server Security Withsecure client Security Withsecure linux Security 64 Withsecure atlant Linux Microsoft Microsoft windows Withsecure server Security Apple macos Apple Linux linux Kernel Withsecure elements Endpoint Protection |
18 Sep 2023, 13:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-18 07:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-42524
Mitre link : CVE-2023-42524
CVE.ORG link : CVE-2023-42524
JSON object : View
Products Affected
withsecure
- email_and_server_security
- client_security
- elements_endpoint_protection
- linux_protection
- atlant
- linux_security_64
- server_security
apple
- macos
linux
- linux_kernel
microsoft
- windows
CWE
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')