Описание
Multiple Denial-of-Service vulnerabilities was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files cause memory corruption and heap buffer overflow which eventually can crash the scanning engine. The exploit can be triggered remotely by an attacker.
Ссылки
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:f-secure:atlant:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:elements_endpoint_protection:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:linux_security:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:withsecure:cloud_protection_for_salesforce:*:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:elements_collaboration_protection:*:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00221
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Multiple Denial-of-Service vulnerabilities was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files cause memory corruption and heap buffer overflow which eventually can crash the scanning engine. The exploit can be triggered remotely by an attacker.
EPSS
Процентиль: 44%
0.00221
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-787