Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-33599

Опубликовано: 07 сент. 2021
Источник: nvd
CVSS3: 4.6
CVSS3: 5.5
CVSS2: 4.3
EPSS Низкий

Описание

A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service (infinite loop and freezes AV engine scanner). The vulnerability can be exploit remotely by an attacker. A successful attack will result in Denial-of-Service of the Anti-Virus engine.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:f-secure:atlant:-:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:cloud_protection_for_salesforce:-:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:linux_security:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:a:f-secure:elements_endpoint_protection:-:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 35%
0.00145
Низкий

4.6 Medium

CVSS3

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-835

Связанные уязвимости

github логотип

GHSA-6f5f-78pr-p7q9

github
больше 3 лет назад

A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service (infinite loop and freezes AV engine scanner). The vulnerability can be exploit remotely by an attacker. A successful attack will result in Denial-of-Service of the Anti-Virus engine.

EPSS

Процентиль: 35%
0.00145
Низкий

4.6 Medium

CVSS3

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-835