← Back

CVE-2023-47264

nvd nist
Published: Nov 16, 2023Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.

Affected (8)

Withsecure
7 products
Email And Server Security
Server Security
Client Security
Elements Endpoint Protection
Linux Protection
Linux Security 64
Atlant
Configuration A
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Email And Server Security
Version 15
Server Security
Version 15
Running on/withPlatform Versions
Microsoft
Windows
All versions
Configuration B
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Client Security
Version 15
Elements Endpoint Protection
From 17
Running on/withPlatform Versions
Apple
Macos
All versions
Configuration C
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Linux Protection
Version 12.0
Linux Security 64
Version 12.0
Running on/withPlatform Versions
Linux
Linux Kernel
All versions
Configuration D
2 vulnerable
Vulnerable SoftwareAffected Versions
Withsecure
Atlant
From 15.0
Atlant
Version 1.0.35-1

Related CWEs

CWE-125
Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.