CVE-2022-28881

EPSS 0.46%
Veröffentlicht 10.08.2022 20:15:32
Zuletzt bearbeitet 21.11.2024 06:58:07
Quelle cve-notifications-us@f-secure.
CVE-Watchlists
Login
Unerledigt
Login

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

F-secure ≫ Elements Endpoint Detection And Response

Apple ≫ macOS Version-
Microsoft ≫ Windows Version-

F-secure ≫ Elements Endpoint Protection

Apple ≫ macOS Version-
Microsoft ≫ Windows Version-

F-secure ≫ Atlant

F-secure ≫ Cloud Protection For Salesforce

F-secure ≫ Elements Collaboration Protection

F-secure ≫ Internet Gatekeeper

F-secure ≫ Linux Security HwPlatformx86

F-secure ≫ Linux Security 64

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.46%	0.634

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cve-notifications-us@f-secure.com	4.3	0.9	3.4	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L

https://www.f-secure.com/en/business/support-and-downloads/security-advisories

Vendor Advisory

https://www.withsecure.com/en/support/security-advisories

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-28881

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-28881

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-28881

EUVD