Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.
References
Link | Resource |
---|---|
https://www.withsecure.com/en/support/security-advisories | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
History
22 Sep 2023, 00:55
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-835 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_security_64:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_protection:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:atlant:1.0.35-1:*:*:*:*:*:*:* |
|
First Time |
Withsecure linux Protection
Withsecure Withsecure email And Server Security Withsecure client Security Withsecure linux Security 64 Withsecure atlant Linux Microsoft Microsoft windows Withsecure server Security Apple macos Apple Linux linux Kernel Withsecure elements Endpoint Protection |
|
References | (MISC) https://www.withsecure.com/en/support/security-advisories - Vendor Advisory |
18 Sep 2023, 13:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-18 07:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-42525
Mitre link : CVE-2023-42525
CVE.ORG link : CVE-2023-42525
JSON object : View
Products Affected
withsecure
- atlant
- client_security
- server_security
- email_and_server_security
- linux_security_64
- linux_protection
- elements_endpoint_protection
microsoft
- windows
linux
- linux_kernel
apple
- macos
CWE
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')