F-secure Server Security — known CVE vulnerabilities
Every CVE whose affected-product data names F-secure Server Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-43766 — CVSS 7.8 (high): Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security…
CVE-2023-43760 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server…
CVE-2023-43761 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server Security…
CVE-2023-43765 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server…
CVE-2023-49322 — CVSS 7.5 (high): Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash…
CVE-2023-43767 — CVSS 7.5 (high): Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15…
CVE-2013-7369 — CVSS 7.5 (high): SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti-Virus for Microsoft Exchange Server…
CVE-2021-44750 — CVSS 6.4 (medium): An arbitrary code execution vulnerability was found in the F-Secure Support Tool. A standard user can craft a special configuration file…
CVE-2023-49321 — CVSS 5.3 (medium): Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang…