CVE-2024-4454

all versions

WithSecure Elements Endpoint Protection Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local a

7.8HIGH

CVE-2024-23764

all versions

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Ser

6.7MEDIUM

CVE-2023-49322

all versions

Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine

7.5HIGH

CVE-2023-49321

all versions

Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to

5.3MEDIUM

CVE-2023-47172

>= 15

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15, WithSecure Server Securi

7.8HIGH

CVE-2023-47264

all versions

Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS)

7.5HIGH

CVE-2023-47263

all versions

Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file. This affects

7.5HIGH

CVE-2023-43767

all versions

Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security

7.5HIGH

CVE-2023-43766

all versions

Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Se

7.8HIGH

CVE-2023-43765

all versions

Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure

7.5HIGH

CVE-2023-43761

all versions

Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server

7.5HIGH

CVE-2023-43760

all versions

Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure

7.5HIGH

CVE-2023-42525

all versions

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client

7.5HIGH

CVE-2023-42524

all versions

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client

7.5HIGH

CVE-2023-42523

all versions

Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file. This affects WithSecure Client S

7.5HIGH

CVE-2023-42522

all versions

Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. This affect

7.5HIGH

CVE-2023-42521

all versions

Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file. This affects WithSecure

7.5HIGH

CVE-2023-42526

all versions

Certain WithSecure products allow a remote crash of a scanning engine via decompression of crafted data files. This affects WithSe

7.5HIGH

CVE-2023-42520

all versions

Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure

7.5HIGH

CVE-2021-44750

all versions

An arbitrary code execution vulnerability was found in the F-Secure Support Tool. A standard user can craft a special configuratio

6.4MEDIUM

CVE-2020-9342

< 17.0.605.474

The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archi

5.5MEDIUM

CVE-2013-7369

all versions

SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti-Virus for Microsoft Exchange Ser