Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-28884

A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine.

Published

2022-09-06T18:15:12.907

Last Modified

2024-11-21T06:58:07.980

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Primary
CWE-835

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	withsecure	business_suite	-	Yes
Application	withsecure	elements_endpoint_protection	*	Yes
Application	f-secure	internet_gatekeeper	-	Yes
Application	f-secure	linux_security	-	Yes

References

https://www.withsecure.com/en/expertise/people Vendor Advisory ([email protected])
https://www.withsecure.com/en/support/security-advisories Vendor Advisory ([email protected])
https://www.withsecure.com/en/expertise/people Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.withsecure.com/en/support/security-advisories Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)