7.5
CVE-2023-47264
- EPSS 0.15%
- Veröffentlicht 16.11.2023 03:15:07
- Zuletzt bearbeitet 21.11.2024 08:30:05
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Withsecure ≫ Client Security Version15
Withsecure ≫ Elements Endpoint Protection Version >= 17
Withsecure ≫ Email And Server Security Version15
Withsecure ≫ Server Security Version15
Withsecure ≫ Client Security Version15
Withsecure ≫ Elements Endpoint Protection Version >= 17
Withsecure ≫ Linux Protection Version12.0
Withsecure ≫ Linux Security 64 Version12.0
Withsecure ≫ Atlant Version >= 15.0
Withsecure ≫ Atlant Version1.0.35-1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.362 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.