CVE-2021-33602

Published: Oct 6, 2021Modified: Nov 21, 2024

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

A vulnerability affecting the F-Secure Antivirus engine was discovered when the engine tries to unpack a zip archive (LZW decompression method), and this can crash the scanning engine. The vulnerability can be exploited remotely by an attacker. A successful attack will result in Denial-of-Service of the Anti-Virus engine.

Affected (4)

Products: F Secure: Atlant, Cloud Protection, Internet Gatekeeper, Linux Security

4 products

Cloud Protection

Internet Gatekeeper

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
F Secure Atlant	All versions
F Secure Cloud Protection	All versions
F Secure Internet Gatekeeper	All versions
F Secure Linux Security	All versions

References (2)

https://www.f-secure.com/en/business/support-and-downloads/security-advisories

Source: cve-notifications-us@f-secure.com

Vendor Advisory

https://www.f-secure.com/en/business/support-and-downloads/security-advisories

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.