← Back

F Secure

f-secure

120 CVEs • 64 products

Products (64)

Click to collapse
Toggle
Internet Gatekeeper
internet_gatekeeper
46 CVEs
F Secure Anti Virus
f-secure_anti-virus
35 CVEs
Elements Endpoint Protection
elements_endpoint_protection
29 CVEs
Atlant
atlant
29 CVEs
Linux Security
linux_security
25 CVEs
Safe
safe
19 CVEs
F Secure Internet Security
f-secure_internet_security
18 CVEs
Linux Security 64
linux_security_64
16 CVEs
Cloud Protection For Salesforce
cloud_protection_for_salesforce
14 CVEs
Client Security
client_security
11 CVEs
Email And Server Security
email_and_server_security
10 CVEs
F Secure Anti Virus Linux Client Security
f-secure_anti-virus_linux_client_security
9 CVEs
Server Security
server_security
9 CVEs
Elements Endpoint Detection And Response
elements_endpoint_detection_and_response
8 CVEs
Elements Collaboration Protection
elements_collaboration_protection
8 CVEs
F Secure Anti Virus Client Security
f-secure_anti-virus_client_security
7 CVEs
Linux Protection
linux_protection
7 CVEs
F Secure Anti Virus Linux Server Security
f-secure_anti-virus_linux_server_security
6 CVEs
Anti Virus
anti-virus
6 CVEs
F Secure Personal Express
f-secure_personal_express
5 CVEs
F Secure Anti Virus For Workstations
f-secure_anti-virus_for_workstations
5 CVEs
F Secure For Firewalls
f-secure_for_firewalls
4 CVEs
Policy Manager
policy_manager
4 CVEs
F Secure Anti Virus For Linux
f-secure_anti-virus_for_linux
4 CVEs
F Secure Protection Service For Business
f-secure_protection_service_for_business
4 CVEs
F Secure Protection Service For Consumers
f-secure_protection_service_for_consumers
4 CVEs
F Secure Protection Service
f-secure_protection_service
3 CVEs
Elements For Microsoft 365
elements_for_microsoft_365
3 CVEs
F Secure Ssh Server
f-secure_ssh_server
2 CVEs
Solutions Based On F Secure Personal Express
solutions_based_on_f-secure_personal_express
2 CVEs
F Secure Service Platform For Service Providers
f-secure_service_platform_for_service_providers
2 CVEs
F Secure Client Security
f-secure_client_security
2 CVEs
F Secure Anti Virus For Citrix Servers
f-secure_anti-virus_for_citrix_servers
2 CVEs
F Secure Anti Virus For Microsoft Exchange
f-secure_anti-virus_for_microsoft_exchange
2 CVEs
F Secure Anti Virus For Mimesweeper
f-secure_anti-virus_for_mimesweeper
2 CVEs
F Secure Anti Virus For Windows Servers
f-secure_anti-virus_for_windows_servers
2 CVEs
Home Server Security
home_server_security
2 CVEs
Internet Security
internet_security
2 CVEs
Psb Workstation Security
psb_workstation_security
2 CVEs
Radar
radar
2 CVEs
Security Cloud
security_cloud
2 CVEs
F Secure Content Scanner Server
f-secure_content_scanner_server
1 CVE
F Secure Mobile Antivirus For S60
f-secure_mobile_antivirus_for_s60
1 CVE
F Secure Mobile Antivirus For Windows Mobile
f-secure_mobile_antivirus_for_windows_mobile
1 CVE
F Secure Mobile Security For Series 80
f-secure_mobile_security_for_series_80
1 CVE
F Secure Home Server Security
f-secure_home_server_security
1 CVE
F Secure Internet Gatekeeper For Linux
f-secure_internet_gatekeeper_for_linux
1 CVE
F Secure Internet Gatekeeper For Windows
f-secure_internet_gatekeeper_for_windows
1 CVE
F Secure Linux Security
f-secure_linux_security
1 CVE
F Secure Messaging Security Gateway
f-secure_messaging_security_gateway
1 CVE
F Secure Internet Security 2010
f-secure_internet_security_2010
1 CVE
Safe Anywhere
safe_anywhere
1 CVE
Secure Messaging Secure Gateway
secure_messaging_secure_gateway
1 CVE
Software Updater
software_updater
1 CVE
F Secure Online Scanner
f-secure_online_scanner
1 CVE
Xfence
xfence
1 CVE
Computer Protection
computer_protection
1 CVE
Endpoint Protection
endpoint_protection
1 CVE
Business Suite
business_suite
1 CVE
Cloud Protection
cloud_protection
1 CVE
Countercept
countercept
1 CVE
Elements
elements
1 CVE
Collaboration Protection
collaboration_protection
1 CVE
Total
total
1 CVE

CVEs (120)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-7240
1F Secure
1Total
Dec 11, 2024
Nov 22, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
F-Secure Total Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of F-Secure Total. User interaction on the part of an adm...Show more
F-Secure Total Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of F-Secure Total. User interaction on the part of an administrator is required to exploit this vulnerability. The specific flaw exists within the WithSecure plugin hosting service. By creating a symbolic link, an attacker can abuse the service to create a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-23005.Show less
CVE-2023-49322
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Nov 27, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecu...Show more
Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant 1.0.35-1.Show less
CVE-2023-49321
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Nov 27, 2023
N/A· v4
5.3 MEDIUM· v3
N/A· v2
Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecu...Show more
Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant 1.0.35-1.Show less
CVE-2023-43767
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Sep 22, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure El...Show more
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.Show less
CVE-2023-43766
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Sep 22, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSec...Show more
Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.Show less
CVE-2023-43765
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Sep 22, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint...Show more
Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.Show less
CVE-2023-43761
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Sep 22, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protec...Show more
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.Show less
CVE-2023-43760
1F Secure
7Atlant
Client SecurityElements Endpoint Protection+4 more
Nov 21, 2024
Sep 22, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint...Show more
Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.Show less
CVE-2022-47524
1F Secure
1Safe
Apr 15, 2025
Dec 23, 2022
N/A· v4
5.4 MEDIUM· v3
N/A· v2
F-Secure SAFE Browser 19.1 before 19.2 for Android allows an IDN homograph attack.
CVE-2022-45871
1F Secure
1Atlant
Apr 22, 2025
Dec 13, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Denial-of-Service (DoS) vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing ICAP request. The exploit can be triggered remotely by an attacker.
CVE-2022-38166
1F Secure
1Elements Endpoint Protection
Apr 29, 2025
Nov 25, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
In F-Secure Endpoint Protection for Windows and macOS before channel with Capricorn database 2022-11-22_07, the aerdl.dll unpacker handler crashes. This can lead to a scanning engine crash, triggerable remotely by an att...Show more
In F-Secure Endpoint Protection for Windows and macOS before channel with Capricorn database 2022-11-22_07, the aerdl.dll unpacker handler crashes. This can lead to a scanning engine crash, triggerable remotely by an attacker for denial of service.Show less
CVE-2022-38164
1F Secure
1Safe
Nov 21, 2024
Nov 7, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
A vulnerability affecting F-Secure SAFE browser for Android and iOS was discovered. A maliciously crafted website could make a phishing attack with URL spoofing as the browser only display certain part of the entire URL.
CVE-2022-38163
1F Secure
1Safe
May 2, 2025
Nov 7, 2022
N/A· v4
3.5 LOW· v3
N/A· v2
A Drag and Drop spoof vulnerability was discovered in F-Secure SAFE Browser for Android and iOS version 19.0 and below. Drag and drop operation by user on address bar could lead to a spoofing of the address bar.
CVE-2022-28887
1F Secure
6Atlant
Elements Endpoint Detection And ResponseElements Endpoint Protection+3 more
May 15, 2025
Oct 12, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Multiple Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl.dll unpacker handler function crashes. This can lead to a possible scanning engine crash.
CVE-2022-28886
1F Secure
5Cloud Protection For Salesforce
Collaboration ProtectionElements Endpoint Protection+2 more
May 22, 2025
Sep 23, 2022
N/A· v4
5.5 MEDIUM· v3
N/A· v2
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.so/aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engi...Show more
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.so/aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engineShow less
CVE-2022-28885
1F Secure
2Atlant
Linux Security
Nov 21, 2024
Sep 6, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Denial-of-Service (DoS) vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing the scanning request.
CVE-2022-28884
2F Secure
Withsecure
4Business Suite
Elements Endpoint ProtectionInternet Gatekeeper+1 more
Nov 21, 2024
Sep 6, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine.
CVE-2022-28883
1F Secure
7Atlant
Cloud Protection For SalesforceElements Collaboration Protection+4 more
Nov 21, 2024
Aug 23, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl unpack function crashes. This can lead to a possible scanning engine crash. The exploit can be triggered remotely...Show more
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl unpack function crashes. This can lead to a possible scanning engine crash. The exploit can be triggered remotely by an attacker.Show less
CVE-2022-28882
1F Secure
7Atlant
Cloud Protection For SalesforceElements Collaboration Protection+4 more
Nov 21, 2024
Aug 23, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aegen.dll will go into an infinite loop when unpacking PE files. This eventually leads to scanning engine crash. The ex...Show more
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aegen.dll will go into an infinite loop when unpacking PE files. This eventually leads to scanning engine crash. The exploit can be triggered remotely by an attacker.Show less
CVE-2022-28881
1F Secure
8Atlant
Cloud Protection For SalesforceElements Collaboration Protection+5 more
Nov 21, 2024
Aug 10, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit ca...Show more
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.Show less