Vulnerability Description
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning the aeheur.dll component can crash the scanning engine. The exploit can be triggered remotely by an attacker.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Secure | Atlant | All versions |
| F-Secure | Cloud Protection For Salesforce | All versions |
| F-Secure | Elements Collaboration Protection | All versions |
| F-Secure | Internet Gatekeeper | All versions |
| F-Secure | Linux Security | All versions |
| F-Secure | Elements Endpoint Protection | All versions |
| Apple | Macos | - |
| Microsoft | Windows | - |
References
- https://www.f-secure.com/en/business/support-and-downloads/security-advisoriesVendor Advisory
- https://www.withsecure.com/en/support/security-advisoriesVendor Advisory
- https://www.f-secure.com/en/business/support-and-downloads/security-advisoriesVendor Advisory
- https://www.withsecure.com/en/support/security-advisoriesVendor Advisory
FAQ
What is CVE-2022-28876?
CVE-2022-28876 is a vulnerability with a CVSS score of 4.3 (MEDIUM). A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning the aeheur.dll component can crash the scanning engine. The exploit ca...
How severe is CVE-2022-28876?
CVE-2022-28876 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-28876?
Check the references section above for vendor advisories and patch information. Affected products include: F-Secure Atlant, F-Secure Cloud Protection For Salesforce, F-Secure Elements Collaboration Protection, F-Secure Internet Gatekeeper, F-Secure Linux Security.