← Back

CVE-2022-28880

nvd nist
Published: Aug 5, 2022Modified: Jun 2, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.

Affected (8)

F Secure
8 products
Elements Endpoint Detection And Response
Elements Endpoint Protection
Atlant
Cloud Protection For Salesforce
Elements Collaboration Protection
Internet Gatekeeper
Linux Security
Linux Security 64
Configuration A
2 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Elements Endpoint Detection And Response
All versions
Elements Endpoint Protection
All versions
Running on/withPlatform Versions
Apple
Macos
All versions
Microsoft
Windows
All versions
Configuration B
6 vulnerable
Vulnerable SoftwareAffected Versions
Atlant
All versions
Cloud Protection For Salesforce
All versions
Elements Collaboration Protection
All versions
Internet Gatekeeper
All versions
Linux Security
All versions
Linux Security 64
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (4)

Source: cve-notifications-us@f-secure.com
Not ApplicableVendor Advisory
Source: cve-notifications-us@f-secure.com
Not ApplicableVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Not ApplicableVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Not ApplicableVendor Advisory

Timeline

No history available yet.