threat
engine
.sh
Back
·
··:··
Home
/
Product
/
f secure elements endpoint protection
Product
f secure elements endpoint protection
42 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-4454
all versions
WithSecure Elements Endpoint Protection Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local a
7.8
HIGH
CVE-2024-23764
all versions
Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Ser
6.7
MEDIUM
CVE-2023-49322
>= 17.0
Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine
7.5
HIGH
CVE-2023-49321
>= 17.0
Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to
5.3
MEDIUM
CVE-2023-47172
>= 17
Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15, WithSecure Server Securi
7.8
HIGH
CVE-2023-47264
>= 17
Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS)
7.5
HIGH
CVE-2023-47263
>= 17
Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file. This affects
7.5
HIGH
CVE-2023-43767
>= 17.0
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security
7.5
HIGH
CVE-2023-43766
>= 17.0
Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Se
7.8
HIGH
CVE-2023-43765
>= 17.0
Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure
7.5
HIGH
CVE-2023-43761
>= 17.0
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server
7.5
HIGH
CVE-2023-43760
>= 17.0
Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure
7.5
HIGH
CVE-2023-42525
>= 17
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client
7.5
HIGH
CVE-2023-42524
>= 17
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client
7.5
HIGH
CVE-2023-42523
>= 17
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file. This affects WithSecure Client S
7.5
HIGH
CVE-2023-42522
>= 17
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. This affect
7.5
HIGH
CVE-2023-42521
>= 17
Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file. This affects WithSecure
7.5
HIGH
CVE-2023-42526
>= 17
Certain WithSecure products allow a remote crash of a scanning engine via decompression of crafted data files. This affects WithSe
7.5
HIGH
CVE-2023-42520
>= 17
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure
7.5
HIGH
CVE-2022-38166
all versions
In F-Secure Endpoint Protection for Windows and macOS before channel with Capricorn database 2022-11-22_07, the aerdl.dll unpacker
7.5
HIGH
CVE-2022-28887
all versions
Multiple Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl.dll unpacker han
4.3
MEDIUM
CVE-2022-28886
all versions
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.so/aerdl.dll may go into an i
4.3
MEDIUM
CVE-2022-28884
all versions
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.dll may go into an infinite l
4.3
MEDIUM
CVE-2022-28883
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl unpack function crashes
3.5
LOW
CVE-2022-28882
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aegen.dll will go into an inf
4.3
MEDIUM
CVE-2022-28881
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecu
4.3
MEDIUM
CVE-2022-28880
all versions
A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed P
4.3
MEDIUM
CVE-2022-28879
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning
4.3
MEDIUM
CVE-2022-28878
all versions
A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed A
4.3
MEDIUM
CVE-2022-28877
all versions
This vulnerability allows local user to delete arbitrary file in the system and bypassing security protection which can be abused
4.3
MEDIUM
CVE-2022-28876
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning
4.3
MEDIUM
CVE-2022-28875
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning
4.3
MEDIUM
CVE-2022-28874
all versions
Multiple Denial-of-Service vulnerabilities was discovered in the F-Secure Atlant and in certain WithSecure products while scanning
4.3
MEDIUM
CVE-2021-44747
< 2022-02-23_01
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Linux Security whereby the Fmlib component used in certain F-Se
4.6
MEDIUM
CVE-2021-40837
< 2022-02-01_01
A vulnerability affecting F-Secure antivirus engine before Capricorn update 2022-02-01_01 was discovered whereby decompression of
4.6
MEDIUM
CVE-2021-40836
all versions
A vulnerability affecting F-Secure antivirus engine was discovered whereby scanning MS outlook .pst files can lead to denial-of-se
4.6
MEDIUM
CVE-2021-40833
all versions
A vulnerability affecting F-Secure antivirus engine was discovered whereby unpacking UPX file can lead to denial-of-service. The v
5.5
MEDIUM
CVE-2021-40832
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVRDL unpacking module component used in cer
5.5
MEDIUM
CVE-2021-33603
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVPACK module component used in certain F-Se
5.5
MEDIUM
CVE-2021-33599
all versions
A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service
4.6
MEDIUM
CVE-2021-33598
all versions
A Denial-of-Service (DoS) vulnerability was discovered in all versions of F-Secure Atlant whereby the SAVAPI component used in cer
4.6
MEDIUM
CVE-2021-33597
all versions
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure pr
3.5
LOW
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin