Vulnerabilities > F Secure > Email AND Server Security
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-27 | CVE-2023-49321 | Unspecified vulnerability in F-Secure products Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. | 5.3 |
| 2023-11-27 | CVE-2023-49322 | Unspecified vulnerability in F-Secure products Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. | 7.5 |
| 2023-09-22 | CVE-2023-43760 | Unspecified vulnerability in F-Secure products Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. | 7.5 |
| 2023-09-22 | CVE-2023-43761 | Infinite Loop vulnerability in F-Secure products Certain WithSecure products allow Denial of Service (infinite loop). | 7.5 |
| 2023-09-22 | CVE-2023-43765 | Unspecified vulnerability in F-Secure products Certain WithSecure products allow Denial of Service in the aeelf component. | 7.5 |
| 2023-09-22 | CVE-2023-43766 | Unspecified vulnerability in F-Secure products Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. | 7.8 |
| 2023-09-22 | CVE-2023-43767 | Unspecified vulnerability in F-Secure products Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. | 7.5 |
| 2022-03-10 | CVE-2021-44750 | Unspecified vulnerability in F-Secure products An arbitrary code execution vulnerability was found in the F-Secure Support Tool. network f-secure | 8.5 |
| 2020-02-22 | CVE-2020-9342 | Improper Input Validation vulnerability in F-Secure products The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. | 4.3 |
| 2014-04-18 | CVE-2013-7369 | SQL Injection vulnerability in F-Secure products SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti-Virus for Microsoft Exchange Server before HF02, Anti-Virus for Windows Servers 9.00 before HF09, Anti-Virus for Citrix Servers 9.00 before HF09, and F-Secure Email and Server Security and F-Secure Server Security 9.20 before HF01 allows remote attackers to execute arbitrary SQL commands via unknown vectors, related to GetCommand. | 7.5 |