Vulnerability Description
Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Withsecure | Client Security | 15 |
| Withsecure | Elements Endpoint Protection | >= 17 |
| Withsecure | Email And Server Security | 15 |
| Withsecure | Server Security | 15 |
| Microsoft | Windows | - |
| Apple | Macos | - |
| Withsecure | Linux Protection | 12.0 |
| Withsecure | Linux Security 64 | 12.0 |
| Linux | Linux Kernel | - |
| Withsecure | Atlant | >= 15.0 |
Related Weaknesses (CWE)
References
- https://www.withsecure.com/en/support/security-advisories/cve-2023-47264Vendor Advisory
- https://www.withsecure.com/en/support/security-advisories/cve-2023-47264Vendor Advisory
FAQ
What is CVE-2023-47264?
CVE-2023-47264 is a vulnerability with a CVSS score of 7.5 (HIGH). Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Securi...
How severe is CVE-2023-47264?
CVE-2023-47264 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-47264?
Check the references section above for vendor advisories and patch information. Affected products include: Withsecure Client Security, Withsecure Elements Endpoint Protection, Withsecure Email And Server Security, Withsecure Server Security, Microsoft Windows.