F-secure Elements Endpoint Protection — known CVE vulnerabilities
Every CVE whose affected-product data names F-secure Elements Endpoint Protection, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (29)
CVE-2023-43766 — CVSS 7.8 (high): Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security…
CVE-2023-43767 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15…
CVE-2022-38166 — CVSS 7.5 (high): In F-Secure Endpoint Protection for Windows and macOS before channel with Capricorn database 2022-11-22_07, the aerdl.dll unpacker handler…
CVE-2023-43760 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server…
CVE-2023-43761 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server Security…
CVE-2023-43765 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server…
CVE-2023-49322 — CVSS 7.5 (high): Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash…
CVE-2021-40833 — CVSS 5.5 (medium): A vulnerability affecting F-Secure antivirus engine was discovered whereby unpacking UPX file can lead to denial-of-service. The…
CVE-2021-33603 — CVSS 5.5 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVPACK module component used in certain F-Secure…
CVE-2021-40832 — CVSS 5.5 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVRDL unpacking module component used in certain…
CVE-2023-49321 — CVSS 5.3 (medium): Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang…
CVE-2021-40836 — CVSS 4.6 (medium): A vulnerability affecting F-Secure antivirus engine was discovered whereby scanning MS outlook .pst files can lead to denial-of-service…
CVE-2021-44747 — CVSS 4.6 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Linux Security whereby the Fmlib component used in certain F-Secure…
CVE-2021-33598 — CVSS 4.6 (medium): A Denial-of-Service (DoS) vulnerability was discovered in all versions of F-Secure Atlant whereby the SAVAPI component used in certain…
CVE-2021-33599 — CVSS 4.6 (medium): A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service…
CVE-2021-40837 — CVSS 4.6 (medium): A vulnerability affecting F-Secure antivirus engine before Capricorn update 2022-02-01_01 was discovered whereby decompression of ACE file…
CVE-2022-28879 — CVSS 4.3 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning the…
CVE-2022-28874 — CVSS 4.3 (medium): Multiple Denial-of-Service vulnerabilities was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed…
CVE-2022-28875 — CVSS 4.3 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning the…
CVE-2022-28876 — CVSS 4.3 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning the…
CVE-2022-28877 — CVSS 4.3 (medium): This vulnerability allows local user to delete arbitrary file in the system and bypassing security protection which can be abused for local…
CVE-2022-28878 — CVSS 4.3 (medium): A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed APK file…
CVE-2022-28880 — CVSS 4.3 (medium): A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit…
CVE-2022-28881 — CVSS 4.3 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure…
CVE-2022-28882 — CVSS 4.3 (medium): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aegen.dll will go into an infinite…
CVE-2022-28886 — CVSS 4.3 (medium): A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.so/aerdl.dll may go into an infinite…
CVE-2022-28887 — CVSS 4.3 (medium): Multiple Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl.dll unpacker handler…
CVE-2022-28883 — CVSS 3.5 (low): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl unpack function crashes. This…
CVE-2021-33597 — CVSS 3.5 (low): A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products…