Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.
References
Link | Resource |
---|---|
https://www.withsecure.com/en/support/security-advisories/cve-2023-47264 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
History
01 Dec 2023, 18:32
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-125 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | () https://www.withsecure.com/en/support/security-advisories/cve-2023-47264 - Vendor Advisory | |
First Time |
Withsecure
Withsecure server Security Apple macos Withsecure elements Endpoint Protection Microsoft windows Linux linux Kernel Withsecure linux Security 64 Withsecure atlant Withsecure linux Protection Microsoft Linux Withsecure client Security Apple Withsecure email And Server Security |
|
CPE | cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_security_64:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:linux_protection:12.0:*:*:*:*:*:*:* cpe:2.3:a:withsecure:atlant:1.0.35-1:*:*:*:*:*:*:* cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:* cpe:2.3:a:withsecure:atlant:*:*:*:*:*:*:*:* |
16 Nov 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-16 03:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-47264
Mitre link : CVE-2023-47264
CVE.ORG link : CVE-2023-47264
JSON object : View
Products Affected
withsecure
- linux_security_64
- server_security
- email_and_server_security
- elements_endpoint_protection
- client_security
- atlant
- linux_protection
linux
- linux_kernel
microsoft
- windows
apple
- macos
CWE
CWE-125
Out-of-bounds Read