CVE-2022-28881

EPSS 0.46%
Published 10.08.2022 20:15:32
Last modified 21.11.2024 06:58:07
Source cve-notifications-us@f-secure.
Teams watchlist Login
Open Login

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.

Affected products Warnungen 0 Metrics 3 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

F-secure ≫ Elements Endpoint Detection And Response

Apple ≫ macOS Version-
Microsoft ≫ Windows Version-

F-secure ≫ Elements Endpoint Protection

Apple ≫ macOS Version-
Microsoft ≫ Windows Version-

F-secure ≫ Atlant

F-secure ≫ Cloud Protection For Salesforce

F-secure ≫ Elements Collaboration Protection

F-secure ≫ Internet Gatekeeper

F-secure ≫ Linux Security HwPlatformx86

F-secure ≫ Linux Security 64

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.46%	0.632

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cve-notifications-us@f-secure.com	4.3	0.9	3.4	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L

https://www.f-secure.com/en/business/support-and-downloads/security-advisories

Vendor Advisory

https://www.withsecure.com/en/support/security-advisories

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-28881

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-28881

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-28881

EUVD