Vulnerabilities > CVE-2022-38166 - Unspecified vulnerability in F-Secure Elements Endpoint Protection

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
f-secure

Summary

In F-Secure Endpoint Protection for Windows and macOS before channel with Capricorn database 2022-11-22_07, the aerdl.dll unpacker handler crashes. This can lead to a scanning engine crash, triggerable remotely by an attacker for denial of service.

Vulnerable Configurations

Part Description Count
Application
F-Secure
1
OS
Apple
1
OS
Microsoft
1