CVE-2021-33598

Опубликовано: 23 авг. 2021

Источник: nvd

CVSS3: 4.6

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

A Denial-of-Service (DoS) vulnerability was discovered in all versions of F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS) of the Anti-Virus engine.

Ссылки

https://www.f-secure.com/en/business/programs/vulnerability-reward-program/hall-of-fame
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/fsc-2021-33598
Vendor Advisory
https://www.f-secure.com/en/business/programs/vulnerability-reward-program/hall-of-fame
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/fsc-2021-33598
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:f-secure:atlant:*:*:*:*:*:*:*:*

cpe:2.3:a:f-secure:linux_security:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:a:f-secure:elements_endpoint_protection:-:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00351

Низкий

4.6 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-xxfv-4p77-f27m

github

около 3 лет назад

EPSS

Процентиль: 57%

0.00351

Низкий

4.6 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo