Certain WithSecure products allow a remote crash of a scanning engine via decompression of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.
References
Link | Resource |
---|---|
https://www.withsecure.com/en/support/security-advisories | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
History
22 Sep 2023, 00:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-400 | |
First Time |
Withsecure linux Protection
Withsecure Withsecure email And Server Security Withsecure client Security Withsecure linux Security 64 Withsecure atlant Linux Microsoft Microsoft windows Withsecure server Security Apple macos Apple Linux linux Kernel Withsecure elements Endpoint Protection |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | (MISC) https://www.withsecure.com/en/support/security-advisories - Vendor Advisory | |
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_security_64:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_protection:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:atlant:1.0.35-1:*:*:*:*:*:*:* |
18 Sep 2023, 13:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-18 06:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-42526
Mitre link : CVE-2023-42526
CVE.ORG link : CVE-2023-42526
JSON object : View
Products Affected
withsecure
- atlant
- client_security
- server_security
- email_and_server_security
- linux_security_64
- linux_protection
- elements_endpoint_protection
microsoft
- windows
linux
- linux_kernel
apple
- macos
CWE
CWE-400
Uncontrolled Resource Consumption