Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-28880

A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.

Published

2022-08-05T17:15:08.447

Last Modified

2024-11-21T06:58:07.477

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	f-secure	elements_endpoint_detection_and_response	*	Yes
Application	f-secure	elements_endpoint_protection	*	Yes
Operating System	apple	macos	-	No
Operating System	microsoft	windows	-	No
Application	f-secure	atlant	*	Yes
Application	f-secure	cloud_protection_for_salesforce	*	Yes
Application	f-secure	elements_collaboration_protection	*	Yes
Application	f-secure	internet_gatekeeper	*	Yes
Application	f-secure	linux_security	*	Yes
Application	f-secure	linux_security_64	*	Yes

References

https://www.f-secure.com/en/home/support/vulnerability-reward-program/hall-of-fame Not Applicable, Vendor Advisory ([email protected])
https://www.withsecure.com/en/expertise/people Not Applicable, Vendor Advisory ([email protected])
https://www.f-secure.com/en/home/support/vulnerability-reward-program/hall-of-fame Not Applicable, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.withsecure.com/en/expertise/people Not Applicable, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)