Withsecure Elements Endpoint Protection — known CVE vulnerabilities
Every CVE whose affected-product data names Withsecure Elements Endpoint Protection, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2024-4454 — CVSS 7.8 (high): WithSecure Elements Endpoint Protection Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers…
CVE-2023-47172 — CVSS 7.8 (high): Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15, WithSecure Server Security 15…
CVE-2023-42521 — CVSS 7.5 (high): Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file. This affects WithSecure Client…
CVE-2023-42522 — CVSS 7.5 (high): Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. This affects…
CVE-2023-42523 — CVSS 7.5 (high): Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file. This affects WithSecure Client Security…
CVE-2023-42524 — CVSS 7.5 (high): Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security…
CVE-2023-42526 — CVSS 7.5 (high): Certain WithSecure products allow a remote crash of a scanning engine via decompression of crafted data files. This affects WithSecure…
CVE-2023-47263 — CVSS 7.5 (high): Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file. This affects…
CVE-2023-47264 — CVSS 7.5 (high): Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This…
CVE-2023-42525 — CVSS 7.5 (high): Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security…
CVE-2023-42520 — CVSS 7.5 (high): Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure Client…
CVE-2024-23764 — CVSS 6.7 (medium): Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server…
CVE-2022-28884 — CVSS 4.3 (medium): A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.dll may go into an infinite loop when…