Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-43766


Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.


Published

2023-09-22T05:15:09.867

Last Modified

2024-11-21T08:24:44.703

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
  • Type: Secondary
    CWE-269

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application f-secure linux_protection 12.0 Yes
Application f-secure linux_security_64 12.0 Yes
Operating System linux linux_kernel - No
Application f-secure atlant 1.0.35-1 Yes
Application f-secure client_security 15.00 Yes
Application f-secure elements_endpoint_protection ≥ 17.0 Yes
Application f-secure email_and_server_security 15.00 Yes
Application f-secure server_security 15.00 Yes
Operating System microsoft windows - No
Application f-secure client_security 15.00 Yes
Application f-secure elements_endpoint_protection ≥ 17.0 Yes
Operating System apple macos - No

References