Vulnerabilities > Withsecure > Client Security

DATE CVE VULNERABILITY TITLE RISK
2024-02-08 CVE-2024-23764 Improper Privilege Management vulnerability in Withsecure products
Certain WithSecure products allow Local Privilege Escalation.
local
low complexity
withsecure CWE-269
6.7
2023-11-20 CVE-2023-47172 Unspecified vulnerability in Withsecure products
Certain WithSecure products allow Local Privilege Escalation.
local
low complexity
withsecure
7.8
2023-11-16 CVE-2023-47263 Unspecified vulnerability in Withsecure products
Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file.
network
low complexity
withsecure
7.5
2023-11-16 CVE-2023-47264 Out-of-bounds Read vulnerability in Withsecure products
Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS).
network
low complexity
withsecure CWE-125
7.5
2023-09-18 CVE-2023-42521 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file.
network
low complexity
withsecure CWE-400
7.5
2023-09-18 CVE-2023-42522 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file.
network
low complexity
withsecure CWE-400
7.5
2023-09-18 CVE-2023-42523 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file.
network
low complexity
withsecure CWE-400
7.5
2023-09-18 CVE-2023-42524 Infinite Loop vulnerability in Withsecure products
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types.
network
low complexity
withsecure CWE-835
7.5
2023-09-18 CVE-2023-42525 Infinite Loop vulnerability in Withsecure products
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types.
network
low complexity
withsecure CWE-835
7.5
2023-09-18 CVE-2023-42520 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files.
network
low complexity
withsecure CWE-400
7.5