Vulnerabilities > F Secure > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-06 | CVE-2021-33602 | Unspecified vulnerability in F-Secure products A vulnerability affecting the F-Secure Antivirus engine was discovered when the engine tries to unpack a zip archive (LZW decompression method), and this can crash the scanning engine. | 5.0 |
| 2021-09-28 | CVE-2021-33600 | Reachable Assertion vulnerability in F-Secure Internet Gatekeeper A denial-of-service (DoS) vulnerability was discovered in the web user interface of F-Secure Internet Gatekeeper. | 5.0 |
| 2021-09-28 | CVE-2021-33601 | Unspecified vulnerability in F-Secure Internet Gatekeeper A vulnerability was discovered in the web user interface of F-Secure Internet Gatekeeper. | 6.5 |
| 2021-09-07 | CVE-2021-33599 | Infinite Loop vulnerability in F-Secure products A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service (infinite loop and freezes AV engine scanner). | 4.3 |
| 2021-08-23 | CVE-2021-33598 | Unspecified vulnerability in F-Secure products A Denial-of-Service (DoS) vulnerability was discovered in all versions of F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. | 4.0 |
| 2021-08-05 | CVE-2021-33597 | Unspecified vulnerability in F-Secure products A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. network f-secure | 4.3 |
| 2021-06-21 | CVE-2021-33572 | NULL Pointer Dereference vulnerability in F-Secure products A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. | 4.0 |
| 2020-02-22 | CVE-2020-9342 | Improper Input Validation vulnerability in F-Secure products The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. | 4.3 |
| 2019-05-17 | CVE-2019-11644 | Uncontrolled Search Path Element vulnerability in F-Secure products In the F-Secure installer in F-Secure SAFE for Windows before 17.6, F-Secure Internet Security before 17.6, F-Secure Anti-Virus before 17.6, F-Secure Client Security Standard and Premium before 14.10, F-Secure PSB Workstation Security before 12.01, and F-Secure Computer Protection Standard and Premium before 19.3, a local user can escalate their privileges through a DLL hijacking attack against the installer. | 6.8 |
| 2018-06-13 | CVE-2018-10403 | Improper Certificate Validation vulnerability in F-Secure Xfence An issue was discovered in F-Secure XFENCE and Little Flocker. | 6.8 |