Vulnerabilities > CVE-2022-28876 - Unspecified vulnerability in F-Secure products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

f-secure

NVD

Published: 2022-07-14

Updated: 2022-07-21

Summary

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning the aeheur.dll component can crash the scanning engine. The exploit can be triggered remotely by an attacker.

Vulnerable Configurations

Part	Description	Count
Application	F-Secure F Secure Atlant * F Secure Linux Security * F Secure Internet Gatekeeper * F Secure Cloud Protection FOR Salesforce * F Secure Elements Collaboration Protection * F Secure Elements Endpoint Protection *	6
OS	Apple Apple Macos -	1
OS	Microsoft Microsoft Windows -	1

References

https://www.f-secure.com/en/business/support-and-downloads/security-advisories
https://www.withsecure.com/en/support/security-advisories